Hi,
Op 10/1/20 om 8:12 PM schreef Roland Gruber:
just in case, the prompt can be disabled in server profile -> General
settings -> Server settings -> Advanced options.
Thanks!
This is active directory, samba4, not sure if it matters. But:
LAM displays the prompt if:
Reading the user's own DN results in a non-32 return code (no such object)
Not sure how I can tell if that's the case, but I'm guessing that's not
the case. There is nothing special about the account.
AND
( No data was returned for the read request
OR
The user attribute "pwdreset" is set to TRUE
Attrib doesn't exist
OR
The user attribute "passwordexpirationtime" is set and is in the past
The attrib doesn't exist
Can you check in tree view if one of the attributes is set? The
condition to return no data happens when a password change is enforced
via PPolicy.
Not sure about PPolicy... I only remember that from our openldap days
that are long gone.
Does lam log anything anywhere about why it would ask me to change the
password..?
MJ
_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
