On 12/30/2014 06:06 AM, Matt . wrote:
Readin up on this the weak password setting should work, but it doesn't.

What are my chances here as I need to do a "ipa pwpolicy-mod --maxlife 200"

This touches the expiration not the encryption types.

Or can this be done from a ldap browser too ?

Yes. It sets the global kerberos password expiration attribute.


2014-12-29 23:31 GMT+01:00 Matt . <yamakasi....@gmail.com>:
OK, thank for that.

But should an IPA install not add them by default ? Maybe this is some
4.x dev which is still needed ?

I need to look what I exactly need.


--
Thank you,
Dmitri Pal

Sr. Engineering Manager IdM portfolio
Red Hat, Inc.

--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go To http://freeipa.org for more info on the project

Reply via email to