Hi :
Is it possible to read clear text of password of ipa users by admin ?
I m facing the issue of half rollout as half vol.of users changed
password already.
And if i deploy and reset all password then it may make issue for this half
and we dont have records which user password sent .
--
On 08/01/2014 08:23 AM, barry...@gmail.com wrote:
Hi :
Is it possible to read clear text of password of ipa users by admin ?
No. Admin can't even read the hash
# ldapsearch -Y GSSAPI -b
uid=fbar,cn=users,cn=accounts,dc=idm,dc=lab,dc=bos,dc=redhat,dc=com uid
userPassword
SASL/GSSAPI