Issue #9833 has been updated by Chris Barker.
If we could validate the password being provided by puppet this would allow for us to warn users that their password wont meet complexity standards even in noop mode, which could warn users of a possible issue applying this change when it gets rolled into production. ---------------------------------------- Bug #9833: Improve password validation on Windows https://projects.puppetlabs.com/issues/9833#change-95373 * Author: Josh Cooper * Status: Accepted * Priority: Normal * Assignee: * Category: windows * Target version: * Affected Puppet version: 2.7.6 * Keywords: windows user password * Branch: ---------------------------------------- The user type does not allow ':' to be in a user's password, because it's assuming the password format is a cryptographic hash. But that is a valid value for Windows passwords (since those are in cleartext). Ideally we should move the validation to the providers and for Windows, use the [NetValidatePasswordPolicy](http://msdn.microsoft.com/en-us/library/windows/desktop/aa370661\(v=VS.85\).aspx) function to validate the password, which takes into account any password complexity, length, etc requirements. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-bugs. For more options, visit https://groups.google.com/groups/opt_out.
