jtcclab

Q: Open Directory users cannot reset password from login screen

I have this issue where users cannot reset passwords from the login screen. They'll get the prompt to reset their password, but their new password is never accepted. Console will give me a 'Failed to authenticate user (error: 10).' (At this point, I have nothing checked in the global password policy.)

 

The strange thing, however, is that users can log in as long as I don't check the option to force them to reset their password. Once they're in, they can change their password from System Preferences, which is how I've been having users setup their accounts recently. That's a really clunky way of doing that, though, and I'd really like to be able to use the 'Require user to change password' option.

 

I'm running OS X 10.11.6 and Server 5.1.7 on a Mac Mini. All the client computers are OS X 10.11.6 on various recent model iMacs and MacBook Pros.

 

Thanks for any help

OS X El Capitan (10.11.6)

Posted on Aug 5, 2016 1:22 PM