Wouldn't matter - there is no "Demo" account in LDAP, and LDAP is only 
consulted when the password is blank.  There are no groups defined in LDAP, 
either, nor is AREA mapped to look at groups.

Christopher Strauss, Ph.D.
Call Tracking Administration Manager
University of North Texas Computing & IT Center
http://itsm.unt.edu/
From: Action Request System discussion list(ARSList) 
[mailto:arsl...@arslist.org] On Behalf Of Rick Cook
Sent: Friday, March 26, 2010 10:57 AM
To: arslist@ARSLIST.ORG
Subject: Re: ARS 7.5 User Cache Gremlin

**
I would ask if anything on the LDAP side changed. Would a new group policy on 
that side override your password?

Rick

________________________________
From: strauss <stra...@unt.edu>
Date: Fri, 26 Mar 2010 10:41:05 -0500
To: <arslist@ARSLIST.ORG>
Subject: ARS 7.5 User Cache Gremlin

This week we started seeing a brand new gremlin on our two ARS 7.5.00.004 - 
ITSM 7.6.00.001 servers.  The Demo account gets flagged as having an "INVALID" 
password overnight.  If you reset its password, it's good for the day, but the 
next morning it is not valid again.  When you look at the actual record in the 
dbo.user.cache table on the SQL Server, the password value is "INVALID".  When 
you look in the User form, there is a valid-looking encrypted value in field 
102 (password), not an INVALID flag, so this is happening in the User cache!!

Has anyone (a) seen this on their system, (b) located the obscene code or 
process that must be doing this, and (c) figured out how to kill it off?

Needless to say, it's an unacceptable behavior, and we can't just blank out the 
password in SQL Server since we have the AREA LDAP authentication integration 
active.  It's a good thing that we always have several other 
administrator-privileged accounts available.

Christopher Strauss, Ph.D.
Call Tracking Administration Manager
University of North Texas Computing & IT Center
http://itsm.unt.edu/
_attend WWRUG10 www.wwrug.com ARSlist: "Where the Answers Are"_

_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
attend wwrug10 www.wwrug.com ARSlist: "Where the Answers Are"

Reply via email to