On Sat, Mar 24, 2012 at 04:02:59PM +0100, Petter Reinholdtsen wrote: > [Petter Reinholdtsen] > >> So one could set it back to the default by executing > >> > >> kadmin.local -q "modpol -maxlife 0secs users" > >> > >> New user accounts should then have: Password expiration date: [none] > > > > It even affected old users: > > Gah, my mistake. pere was the first user, which si not affected by > this problem. An old user did not get its password expiration date > changed to 'none' by using the command above. The change will take place as soon as the user changes the password.
Please check this script.
#!/bin/bash
#
# /usr/share/debian-edu-config/tools/password-fix
#
# Fix password expiring after 2 days; for new users the password will never
# expire. For existing users this will be the case after they've changed
# their password. Give old users the chance to change the password, exclude
# not affected accounts: templates and first user
#
for i in $(getent passwd|grep home0|grep -v newteacher|grep -v newstudent|grep
-v 1000:1000|cut -d: -f1)
do
kadmin.local -q "modprinc -pwexpire 7000days $i"
done
kadmin.local -q "modpol -maxlife 0secs users"
Wolfgang
signature.asc
Description: Digital signature
