Regarding the page customization issue - I can't reproduce it in my test 3.1.6 instance. I see changes I do to `/opt/gluu/jetty/oxauth/custom/pages/login.xhtml` file at my default login page. You shouldn't need to delete the original files, neither to restart anything.
1. Do you use any custom scripts in your setup? If you try to change a custom login page the script uses, you may need to mimic the entire directory structure it uses under `/opt/gluu/jetty/oxauth/custom/pages/` directory.
2. Have you set proper user rights to the file(s) you copied under `/opt/gluu/jetty/oxauth/custom/pages/`? Please run `# chown -R jetty:jetty /opt/gluu/jetty/oxauth/custom/pages/` to be sure
>I am confused why Gluu docs say that it cannot change passwords on an active directory server when my moodle and joomla sites have no problem with that at all
I suppose you're talking about a feature which would allow you to change password in AD via a control in Gluu's web UI? Please correct me otherwise.
Cache Refresh used in Gluu Server to pull in user accounts from external LDAP servers is by design a very simple, one-direction system. It just pulls in and caches user entries, to save a lot of resources that would be spent to constantly call external databases each time Gluu needs to release user's data (hence the name). It's not designed to be "tightly coupled" with the external directory. Adding some code implementing such a procedure to web UI would require a considerable investment, especially taking into account that different directories may require slightly different procedures for that. But Michael can explain this much better, I believe.
If you would like to have such a feature in some custom authentication script, it's not impossible. Until you are able to conduct this operation (a password change) remotely somehow (AFAIK, AD allows update of user password via LDAP, which is fairly simple to script in python), you can add some extra logic implementing it yourself. That's not something we can provide support for within bounds of Community Support, though.