I'm working on migrating from SunDS to IPA and I've got everything moved
over, but I'm having some issues with userPassword.  I'd like users to be
able to connect with their existing passwords and set an force a password
expiration after our transition is done.

I can copy the {SHA} hash from SunDS to IPA and ldap authentication works in
IPA, but when I try to use kinit u...@realm it is failing with an 'invalid
password'.

I've looked through the schema and can't find a separate 'krbPassword'
entry, can someone clarify for me why this is failing?

Is there another place where the password is stored besides userPassword ?

tia

DougC
_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to