[jira] [Commented] (AMBARI-10018) Kerberos: Password generator needs to generate passwords based on rules to satisfy password policy

Hudson (JIRA) Thu, 07 May 2015 13:06:24 -0700

    [ 
https://issues.apache.org/jira/browse/AMBARI-10018?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14533297#comment-14533297
 ]


Hudson commented on AMBARI-10018:
---------------------------------

SUCCESS: Integrated in Ambari-trunk-Commit #2544 (See 
[https://builds.apache.org/job/Ambari-trunk-Commit/2544/])
Revert "AMBARI-10018. Kerberos: Password generator needs to generate passwords 
based on rules to satisfy password policy (rlevas)" (rlevas: 
http://git-wip-us.apache.org/repos/asf?p=ambari.git&a=commit&h=c775434edc34e2cc0a51f78a7b3eedb2415dc1c6)
* 
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/KerberosServerActionTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/KerberosServerAction.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/CreateKeytabFilesServerAction.java
* ambari-web/app/data/HDP2/site_properties.js
* 
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/ADKerberosOperationHandlerTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/KerberosOperationHandler.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/CreatePrincipalsServerAction.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/FinalizeKerberosServerAction.java
* 
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/KerberosOperationHandlerTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/DestroyPrincipalsServerAction.java
* 
ambari-server/src/main/resources/common-services/KERBEROS/1.10.3-10/configuration/kerberos-env.xml
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/CleanupServerAction.java
AMBARI-10018. Kerberos: Password generator needs to generate passwords based on 
rules to satisfy password policy (rlevas) (rlevas: 
http://git-wip-us.apache.org/repos/asf?p=ambari.git&a=commit&h=6691a1742fe9927d68008d8f54d7a38bff97f524)
* 
ambari-server/src/main/resources/common-services/KERBEROS/1.10.3-10/configuration/kerberos-env.xml
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/FinalizeKerberosServerAction.java
* 
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/KerberosServerActionTest.java
* ambari-web/app/data/HDP2/site_properties.js
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/KerberosServerAction.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/CreatePrincipalsServerAction.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/KerberosOperationHandler.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/CleanupServerAction.java
* 
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/KerberosOperationHandlerTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/security/SecurePasswordHelperTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/security/SecurePasswordHelper.java
* 
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/ADKerberosOperationHandlerTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/CreateKeytabFilesServerAction.java
* 
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/DestroyPrincipalsServerAction.java


> Kerberos: Password generator needs to generate passwords based on rules to 
> satisfy password policy
> --------------------------------------------------------------------------------------------------
>
>                 Key: AMBARI-10018
>                 URL: https://issues.apache.org/jira/browse/AMBARI-10018
>             Project: Ambari
>          Issue Type: Bug
>          Components: ambari-server
>    Affects Versions: 2.0.0
>            Reporter: Robert Levas
>            Assignee: Robert Levas
>              Labels: kerberos
>             Fix For: 2.1.0
>
>         Attachments: AMBARI-10018_01.patch, AMBARI-10018_02.patch
>
>
> The password generator used to generate passwords for identities needs to 
> generate passwords based on a rule set rather than just a random sequence of 
> characters. 
> In a KDC (MIT or Active Directory), there may be a policy in place requiring 
> a certain characteristics for the password. By creating a password consisting 
> if 18 characters pulled randomly from 
> {{abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890?.!$%^*()-_+=~}},
>  there is no guarantee that any specific policy will be met. 
> The following rules should be settable:
> * Length
> * Minimum number of lowercase letters (a-z)
> * Minimum number of uppercase letters (A-Z)
> * Minimum number of digits (0-9)
> * Minimum number of punctuation characters ({{?.!$%^*()-_+=~}})



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (AMBARI-10018) Kerberos: Password generator needs to generate passwords based on rules to satisfy password policy

Reply via email to