Hello everyone. My goal was to migrate ubuntu users to ldap directory service. I've installed slapd and configured it, used migrationtools to migrate group and passwd entries to ldap, and then configured client and pam to authenticate. Everything seems to work just fine, even though I remove user using deluser command I can still login to system through ldap (I've run more tests and they all indicate everything works well).
But there is one 'problem' I guess, or a thing I don't understand. I have a user in both locations (linux/ldap) and I use passwd to change password for this user. After I enter new password (lets say old password was test, new is test2) it shows something like this: LDAP password change succedded, passwd: change succedded which would indicate that everything went well. And if I try to relog using a new password (test2) it works just fine. But the trick is that I can still use an old password (test) to authenticate, and it works as well. Changing password again (to test3) with passwd causes that I can login with test and test3. So the first password which was created at the same beginning remains not changed. Is this wrong? Why is that happening? How to change that? Can anyone explain it to me? Thanks in advance