/self-service-password

Web interface to change and reset password in an LDAP directory

Primary LanguagePHPGNU General Public License v3.0GPL-3.0

LDAP Tool Box Self Service Password

CII Best Practices Build Status

Presentation

Self Service Password is a PHP application that allows users to change their password in an LDAP directory.

The application can be used on standard LDAPv3 directories (OpenLDAP, OpenDS, ApacheDS, Sun Oracle DSEE, Novell, etc.) and also on Active Directory.

Screenshot

It has the following features:

  • Samba mode to change Samba passwords
  • Active directory mode
  • Local password policy:
    • Minimum/maximum length
    • Forbidden characters
    • Upper, Lower, Digit or Special characters counters
    • Reuse old password check
    • Password same as login
    • Complexity (different class of characters)
  • Help messages
  • Reset by questions
  • Reset by mail challenge (token sent by mail)
  • Reset by SMS (trough external Email 2 SMS service)
  • reCAPTCHA (Google API)
  • Mail notification after password change
  • Hook script after password chage

Prerequisite

  • PHP extensions required:
    • php-mcrypt (token crypt)
    • php-mbstring (reset mail)
    • php-ldap
  • valid PHP mail server configuration (reset mail)
  • valid PHP session configuration (reset mail)

Documentation

Documentation is available on http://ltb-project.org/wiki/documentation/self-service-password

Download

Tarballs and packages for Debian and Red Hat are available on http://ltb-project.org/wiki/download#self_service_password