I didn't believe it's possible to change easily, but how I get around it
for service accounts and the like is to change it from the admin side, then
login as the service account using the password set from the admin side.
Then I change the password as the user, which will then obey whatever
passwor
Re-sending this as I forgot to send to the list itself, sorry.
On Mon, Sep 18, 2023 at 6:55 AM Florence Blanc-Renaud
wrote:
> Hi,
>
> On Fri, Sep 15, 2023 at 7:43 PM Russ Long via FreeIPA-users <
> freeipa-users@lists.fedorahosted.org> wrote:
>
>> I have a single-server IPA environment in my hom
Thanks Flo,
I just re-tried adding the variables to the Inventory variables, the
inventory group variables, and the individual host variables in AWX. No
matter what I do, unless I add them to each individual task, when AWX runs
the play, I get an error stating that the password is not set.
--Rus
Not sure if it's what you're looking for, but I developed a bash script to
auto-generate tokens daily for all users not in my service-accounts group
if they did not exist. It then emails a QR code to the user and a
notification email to the management email. This may not be the best way
to do it,
I use this:
ipa user-show $USER --all --raw | grep krbLastSuccessful | awk '{print $2}'
On Fri, Jul 10, 2020 at 9:52 AM White, Daniel E. (GSFC-770.0)[NICS] via
FreeIPA-users wrote:
> I want to get createtimestamp, krbLastSuccessfulAuth, and krbLastPwdChange
> for all active users
>
> The "ipa
If your /var fills, lots of other things will fail too. Seems the best
option here is to setup proper log rotation and alerting along with a large
partition if you're worried.
On Wed, Mar 4, 2020, 17:34 Daniel PC via FreeIPA-users <
freeipa-users@lists.fedorahosted.org> wrote:
> The goal is avoid