On Fri, 2014-06-20 at 15:50 -0400, Nathaniel McCallum wrote: > On Mon, 2014-06-16 at 11:34 -0400, Simo Sorce wrote: > > Although the code is all done it would be nice to have a review of the > > feature, to see if it has all been captured: > > http://www.freeipa.org/page/V4/Keytab_Retrieval > > Is there any need to create different permissions for password > generation vs random generation? I think the answer is no because the > only risk is a substandard password which you can control with password > policy. I just wanted to bring it up.
Indeed we do not differentiate, password policy is what you want to use if you want minimum guarantees, for now. Simo. -- Simo Sorce * Red Hat, Inc * New York _______________________________________________ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel