On 07/19/2014 01:08 AM, Nordgren, Bryce L -FS wrote:
So if I understand the 389-ds ticket correctly, I can add pre-hashed
passwords
via ldapmodify to the 389 server using directory manager as the bind dn? I
just can't use the ipa command line tool/script.
The short answer is no. Trying
I will work with DS team to backport the switch option to Fedora 20 389-ds-
base and to release FreeIPA 4.0.1 with appropriate patch to fix this problem
ASAP, ideally this week.
Thanks much, Martin!
This electronic message contains information generated by the USDA solely for
the
Nordgren, Bryce L -FS wrote:
Someone has reported an issue with password migration where 389-ds is
rejecting the passwords with: passwords with storage scheme are not
allowed. That may be part of the problem.
That was me, but the context was 'ipa user-add' with a password hash rather
DNS is fixed, 4.0.0 is installed, and my external users have been migrated from
an LDAP store via the migrate-ds script.
The password migration page keeps telling me that the password or username I
entered is incorrect. (username: test.user, password: test) I did not mistype
this. I did set
Nordgren, Bryce L -FS wrote:
DNS is fixed, 4.0.0 is installed, and my external users have been
migrated from an LDAP store via the migrate-ds script.
The password migration page keeps telling me that the password or
username I entered is incorrect. (username: test.user, password: test)
Someone has reported an issue with password migration where 389-ds is
rejecting the passwords with: passwords with storage scheme are not
allowed. That may be part of the problem.
That was me, but the context was 'ipa user-add' with a password hash rather
than migrate-ds. Although it makes