+++ This bug was initially created as a clone of Bug #729378 +++
setup windows sync to have a sub-container entry for users e.g.
You can use ldapmodify or (on Windows) Run->adsiedit.msc
Setup windows sync to use cn=testusers,cn=users,dc=example,dc=com as the AD subtree (and use ou=people,dc=example,dc=com or whatever on the DS side) - make sure to set up SSL too in order to test syncing password changes from DS to AD (setting up PassSync is not required) - make sure the sync agreement uses SSL or TLS
Make sure sync is working - e.g. add a user to one side and make sure it syncs to the other side
on the AD side, remove the user entry and the sub-container entry - immediately after this, do an ldap modify operation for the userPassword of the DS user - you should see a crash in the DS shortly thereafter
--- Additional comment from firstname.lastname@example.org on 2011-08-09 14:23:37 EDT ---
Created attachment 517460 [details]
--- Additional comment from email@example.com on 2011-08-09 16:16:47 EDT ---
93c1399..1e357c1 master -> master
Author: Rich Megginson <firstname.lastname@example.org>
Date: Tue Aug 9 12:20:10 2011 -0600
Reviewed by: nkinder, nhosoi (Thanks!)
Fix Description: Check for NULL DN in send_password_modify - return error
if the DN is NULL.
Platforms tested: RHEL6 x86_64, Windows 2008 64-bit
Flag Day: no
Doc impact: no
ds-replication is no longer a component of rhel. folding back to 389-ds-base.
As Clone https://bugzilla.redhat.com/show_bug.cgi?id=729378 is already verified hence marking this as VERIFIED.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.