When I try to reset a ldap user password from client machine I am getting the following error
$ passwd
Changing password for user demo.
Current Password:
New password:
Retype new password:
passwd: Authentication token manipulation error
From /var/log/secure
May 31 15:49:31 host01 passwd: pam_sss(passwd:chauthtok): Password
change failed for user demo: 22 (Authentication token lock busy)
May 31 15:49:31 host01 passwd: pam_krb5[27418]: no password-changing
credentials for 'demo@LDAPSERVER.NET' obtained, user not known
This user exists in ldap server and kerberos database(principal).
Please advise.