Le 18/10/2017 à 10:56, Miguel Angel Gonzalez a écrit :
Hi,
I'm trying to set up in other LDAP schema the LDAP tool. However, the
option: reset by email (resetbytoken.php), there is a problem, the
password is reset, but when I'm trying to login I receive the below
message:
migueltest@server password:
You are required to change your LDAP password immediately.
Creating directory '/home/migueltest'.
Connection to server closed.
so it works, but I can't login to reset the password from the command line
I think the problem is with the Password Policy, but I can't figure
out any solution for now, but I have had another idea.
Can I use the script (resetbytoken.php) to reset the password and edit
the passwordexpirationtime with a specific value? or if you can give
me any suggestion, I would appreciate them.
Hello Miguel,
you need to see if your server is using password policy settings from
shadow account or from OpenLDAP ppolicy.
For shadow, SSP can change some attributs when modifying password:
https://ltb-project.org/documentation/self-service-password/latest/config_ldap#shadow
For OpenLDAP ppolicy, the expiration is computed by the server, and we
can't change it on client side.
--
Clément OUDOT
Consultant en logiciels libres, Expert infrastructure et sécurité
Savoir-faire Linux
137 boulevard de Magenta - 75010 PARIS
Blog: http://sflx.ca/coudot
_______________________________________________
ltb-users mailing list
ltb-users@lists.ltb-project.org
https://lists.ltb-project.org/cgi-bin/mailman/listinfo/ltb-users
