Need helps: need to reset account password with {SSHA} value

[midair77]

Dear, all. I have asked this question before but I have not gotten any replies. I am trying to ask this question once again since I have tried:

zmprov SetPassword myuser@mydomain.com {SSHA}ORM+u4RKy0IvoP549/GY+d3kYgVfz6jc

or with ldapmodify

ldapmodify -x -Z -v -H 'ldap://zim.mydomain.com' -D 'uid=zimbra,cn=admins,cn=zimbra' -f myldapmodifyfile -W

#cat myldapmodifyfile
dn: uid=myuser,ou=people,dc=mydomain,dc=com
changetype: modify
replace: userPassword
userPassword:{SSHA}ORM+u4RKy0IvoP549/GY+d3kYgVfz6jc

I am just wondering how others change passwords of their user accounts when you only have {SSHA} values.

After changing this user password in these manners, the user could not log in using the unencrypted password.

Please point me to right directions when I can accomplish this.

Thank you very much for your helps.

[p24t]

I don't know that you can modify the password directly in the Zimbra LDAP. I know that running an ldapsearch against the server doesn't display the userPassword attribute, so I don't know that it's modifyable.

Trying to use zmprov in that manner will certainly not work, it is expecting the actual password on the commandline, not a hash.

The only thing I could think to recommend would be to assign the user a generic password, and force them to change it at next logon.