On Чцв, 26 вер 2024, Kris C via FreeIPA-users wrote:
Not sure if anyone is experiencing this or not and apologize if it's
already answered, but I've created an FreeIPA account and with a random
password using the command line (ipa user-add user1 --uid=6543
--random). I then, within the WebUI, have the admin account reset
user1's password to something more human friendly. I then, as user1,
attempt to log into the WebUI to set the final password. I provide the
user1 username and the more human friendly password and I can't log in.
I've created the user through the WebUI and reset the password and it
works just like I want it to.
The reason I'm creating the accounts using the CLI is to migrate
accounts from an old LDAP instance into FreeIPA via script. I want to
then have an admin reset the users password so the user can then log in
and set their final password in FreeIPA's WebUI.
Both Web UI and IPA command line tool are using the same IPA API, so
you'd see how a user account was created in the /var/log/httpd/error_log
on the IPA server. In FreeIPA 4.12+ we also log these in audit messages
sent to systemd's journal which can be seen with `journalctl -g IPA.API`
but this only so far was delivered to Fedora 40+.
Can you show more details on how exactly those entries in error_log look
like?
Additionally, what that "I can't log in" looks like, again, in the
error_log?
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland
--
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
