Hello,

Please don't use any ad-hoc cruft when generating passwords throughout IPA if not really really necessary. We have a nice refreshed password generator `ipapython.ipautil.ipa_generate_password()` default config of which does the work for you. It also by default generates passwords compatible with NSS requirements for FIPS (see https://dxr.mozilla.org/nss/source/nss/lib/softoken/fipstokn.c#97 for details).


Thanks!
Standa

--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code

Reply via email to