Passwords are not being updated after being changed in AD

  • After our users change their password in AD they are unable to log in to WordPress. They however are able to log in with their old/prior password.

    Under the Password tab in Next ADI configuration we have “Automatic password update” checked/activated.

    Debug log indicates an issue with suffix, but we have the correct suffix added under the User tab.

    2020-05-27 14:29:15 [DEBUG] NextADInt_Ldap_Connection::authenticateUser [line 344] Trying to authenticate user with username ‘hreeves’ and account suffix ‘@jis.nashville.org’
    2020-05-27 14:29:15 [ERROR] NextADInt_Ldap_Connection::authenticateUser [line 356] Authentication for user ‘hreeves’ failed [AD: Invalid credentials] [AD error code: 49]
    2020-05-27 14:29:15 [ERROR] NextADInt_Adi_Authentication_LoginService::authenticateAtActiveDirectory [line 427] User ‘hreeves’ can not be authenticated.
    2020-05-27 14:29:15 [WARNING] NextADInt_Adi_Authentication_LoginService::tryAuthenticatableSuffixes [line 271] Login for Credentials={login=’hreeves’,sAMAccountName=’hreeves’,userPrincipalName=’hreeves’,netbios=”,objectGuid=”,wordPressUserId=”} failed: none of the suffixes succeeded
    2020-05-27 14:29:15 [DEBUG] NextADInt_Adi_Authentication_PasswordValidationService::overridePasswordCheck [line 113] User from AD and fallback to local (WordPress) password deactivated. Authentication failed.

Viewing 1 replies (of 1 total)
  • Plugin Author schakko

    (@schakko)

    – What happens if you disable each of the options on the “Password” tab?
    – Do you use something like Azure AD / Azure Active Directory Domain /or local read-only domain controllers?
    – Does the final UPN ([email protected]) matches the userPrincipalName attribute in your Active Directory?

Viewing 1 replies (of 1 total)
  • The topic ‘Passwords are not being updated after being changed in AD’ is closed to new replies.