-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Evening all

What's the recommended method for using service accounts with IPA?

For example, using a piece of software that needs to bind to LDAP (aka
Zimbra, Moodle, Joomla, etc), having a password expiry on that specific
bind user would result in the application constantly needing the
password changed.

I can see that you can modify the default password policy (i personally
don't want to change this as this works for my requirements), and also
have the ability to create additional pw policies if needed.

What's the best method to create a user, however have that password for
the new user that never expires? Am I thinking along the right lines of
using a different pw policy for the service accounts?

Thanks all

Dale

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=dM8M
-----END PGP SIGNATURE-----

Attachment: 0xB5B41FAA.asc
Description: application/pgp-keys

Attachment: 0xB5B41FAA.asc.sig
Description: PGP signature

_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to