Re: [389-users] No password change forced at first logon
On further checking the attribute passwordMustChange does not exist in my users I did check using command line and I even tried to set it using command line, it says Object Not found On Thu, May 10, 2012 at 2:55 PM, Ali Jawad ali.ja...@splendor.net wrote: I did check using debug log but everything looks fine in the logs. On Wed, May 9, 2012 at 5:28 PM, Ali Jawad ali.ja...@splendor.net wrote: Hi Any help please ? Thanks ! On Tue, May 8, 2012 at 5:27 PM, Ali Jawad ali.ja...@splendor.net wrote: Hi Mark With I do logon to the GUI and I logon as the directory manager, and I do set the password for an existing user, and I try to create a new user with a new password. But the user does not get prompted for a pwd on first logon after that. How do I reset the pwd ? Thanks On Tue, May 8, 2012 at 5:17 PM, Mark Reynolds marey...@redhat.comwrote: Ali, You need to reset the users password by cn=directory manager or the admin account for this feature to take effect. Just turning it on will do nothing until you reset a password. Then when the user authenticates, they should not be able to do anything but change their password. Mark On 05/08/2012 07:26 AM, Ali Jawad wrote: Hi I did check the box that says User Must Change Password After Reset in Data under configuration I also did set the same policy for specific users. However, I am not being asked to change password on first logons through ssh or direct console on server, the same is true when I do change the password of a user I guess this is what password reset means. I am not using Fine Grain Password settings. Any ideas ? Thanks -- 389 users mailing list389-users@lists.fedoraproject.orghttps://admin.fedoraproject.org/mailman/listinfo/389-users -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] No password change forced at first logon
Hie On Thu, May 10, 2012 at 6:01 PM, Ali Jawad ali.ja...@splendor.net wrote: On further checking the attribute passwordMustChange does not exist in my users I did check using command line and I even tried to set it using command line, it says Object Not found passwordmustchange attribute doesnt exists in user ldap entry. It is in a cos entry which is applied to all users, the cos entry has passworpolicy objectclass and users inherits the password policy from user/subtree level password policy. Try checking the logs. Is it happening for all users and from all hosts ? Regards Arpit Tolani -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] No password change forced at first logon
Hi Thanks for the info, server is in debug mode but no errors show. Regards On Thu, May 10, 2012 at 10:28 PM, Arpit Tolani arpittol...@gmail.comwrote: Hie On Thu, May 10, 2012 at 6:01 PM, Ali Jawad ali.ja...@splendor.net wrote: On further checking the attribute passwordMustChange does not exist in my users I did check using command line and I even tried to set it using command line, it says Object Not found passwordmustchange attribute doesnt exists in user ldap entry. It is in a cos entry which is applied to all users, the cos entry has passworpolicy objectclass and users inherits the password policy from user/subtree level password policy. Try checking the logs. Is it happening for all users and from all hosts ? Regards Arpit Tolani -- 389 users mailing list 389-us...@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- 389 users mailing list 389-us...@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] No password change forced at first logon
Hi Any help please ? Thanks ! On Tue, May 8, 2012 at 5:27 PM, Ali Jawad ali.ja...@splendor.net wrote: Hi Mark With I do logon to the GUI and I logon as the directory manager, and I do set the password for an existing user, and I try to create a new user with a new password. But the user does not get prompted for a pwd on first logon after that. How do I reset the pwd ? Thanks On Tue, May 8, 2012 at 5:17 PM, Mark Reynolds marey...@redhat.com wrote: Ali, You need to reset the users password by cn=directory manager or the admin account for this feature to take effect. Just turning it on will do nothing until you reset a password. Then when the user authenticates, they should not be able to do anything but change their password. Mark On 05/08/2012 07:26 AM, Ali Jawad wrote: Hi I did check the box that says User Must Change Password After Reset in Data under configuration I also did set the same policy for specific users. However, I am not being asked to change password on first logons through ssh or direct console on server, the same is true when I do change the password of a user I guess this is what password reset means. I am not using Fine Grain Password settings. Any ideas ? Thanks -- 389 users mailing list389-users@lists.fedoraproject.orghttps://admin.fedoraproject.org/mailman/listinfo/389-users -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] No password change forced at first logon
Hi Mark With I do logon to the GUI and I logon as the directory manager, and I do set the password for an existing user, and I try to create a new user with a new password. But the user does not get prompted for a pwd on first logon after that. How do I reset the pwd ? Thanks On Tue, May 8, 2012 at 5:17 PM, Mark Reynolds marey...@redhat.com wrote: Ali, You need to reset the users password by cn=directory manager or the admin account for this feature to take effect. Just turning it on will do nothing until you reset a password. Then when the user authenticates, they should not be able to do anything but change their password. Mark On 05/08/2012 07:26 AM, Ali Jawad wrote: Hi I did check the box that says User Must Change Password After Reset in Data under configuration I also did set the same policy for specific users. However, I am not being asked to change password on first logons through ssh or direct console on server, the same is true when I do change the password of a user I guess this is what password reset means. I am not using Fine Grain Password settings. Any ideas ? Thanks -- 389 users mailing list389-users@lists.fedoraproject.orghttps://admin.fedoraproject.org/mailman/listinfo/389-users -- *Ali Jawad * *Information Systems Manager* *Splendor Telecom (www.splendor.net) Beirut, Lebanon Phone: +9611373725/ext 116 FAX: +9611375554* -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users