On 03/27/2015 01:52 PM, Janelle wrote: > > Hi all, > > Found an odd issue and a question. If you change user pw with "ipa user-mod > -password" and the client is configured for LDAP, then the user is not forced > to change the pw on initial login.
This is something we would like to fix eventually, it is tracked in https://fedorahosted.org/freeipa/ticket/1539 It was not done yet as just forcing the password expiration on LDAP BIND tends to break stuff. -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
