[Klaus Ade Johnstad] > I did something similar before. > > Read this thread > > http://www.mail-archive.com/[email protected]/msg05866.html
Thank you for the reminder. Had completely forgotten about this when I started the tread Ralph replied to. I notice the slapd.conf changes you had to do in 2005 is already in place in the squeeze version of the file, so all that is needed is to set the shadowLastChange attribute. To get the password change to update all the needed attributes, I'm not sure how to fix it for openldap. For Kerberos, I filed <URL:http://bugs.debian.org/588968>, and a patch proposal is available for testing. Did not have time to test it myself, nor try to get the Debian release managers to accept the change into Squeeze. If it get into Squeeze, we should create a plugin for the Kerberos server to get all password attributes updated in LDAP when kerberos is asked to change a users passwords. :) Happy hacking, -- Petter Reinholdtsen -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
