Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Cannot reset users password within Jira using LDAP

Stuart Gill
Stuart Gill December 2, 2013

We are hitting an issue where users cannot change their passwords from inside Jira. There is a users directory of our Active directory server and read/write is enabled. The account used to connect is a domain administror so there are no restrictions and it is a simple lDAP setup with a lot of the settings sitll at default. SSL is not enabled for LDAP.

The error we get is:

The password could not be changed by the credentials provider. org.springframework.ldap.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0 ]; nested exception is javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0 ]; remaining name 'cn=sabarish mahadevan,ou=qa,ou=psusers,dc=psslab,dc=local'

i have created groups in jira that have replicated to LDAP and there are no errors reported when testing the group directory from inside Jira.

Any ideas?

Answer
Watch
Like Be the first to like this
3574 views

7 answers

1 accepted

1 vote
Answer accepted
Stuart Gill
Stuart Gill December 4, 2013

Fixed it. It was an access issue as I was not using SSL. Configured SSL and now it works.

Reply
1 vote
Anand Unadkat
Anand Unadkat
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
December 2, 2013

Hi Stuart,

Changing something like passwords will not be possible from JIRA as far as I know as that LDAP will be connected elsewhere as well. This is why, changing password is done thouth the LDAP itself. Yes creating new groups will reflect the LDAP as that grou pis not affected by any other application the LDAP is connected to.

I hope this answers your question.

Regards

Anand

Reply
0 votes
Stuart Gill
Stuart Gill December 2, 2013

Thanks, I'll have to set up a 3rd party web page tool to allow users to reset passwords as they don't have RDP access.

Reply
0 votes
Anand Unadkat
Anand Unadkat
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
December 2, 2013

This is the definition of the error that you are getting:

53	 LDAP_UNWILLING_TO_PERFORM	 Indicates that the LDAP server cannot process the request because of server-defined restrictions. This error is returned for the following reasons: The add entry request violates the server's structure rules...OR...The modify attribute request specifies attributes that users cannot modify...OR...Password restrictions prevent the action...OR...Connection restrictions prevent the action.

Which bring down to my first comment, which is, becuase it is used by all the other appications, it can only be changed through LDAP as the server will block it otherwise.

Reply
0 votes
Anand Unadkat
Anand Unadkat
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
December 2, 2013

Yes. One question, this might solve your problem. Do you have modification permissions in your LDAP server? If so then you might be able to change the passwords. The reason why i think it may be blocking is because you may not have modification permissions in your LDAP server. Give that a try :)

Reply
0 votes
Stuart Gill
Stuart Gill December 2, 2013

The account I'm using to link Jira is a domain adminstrator account so has full control of everything :(

Reply
0 votes
Stuart Gill
Stuart Gill December 2, 2013

So basically I need to set up a way for folks to just do a windows login(RDP to a terminal server) where they can change their password when it is required as Jira even though it is supposed to have read/write access to AD it can't change the password of the LDAP object?

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.