[EMAIL PROTECTED] wrote: > Currently, I'm working through the painful process of configuring > Authentication via MS Active Directory, but I have a question about > Trac logins in general. > > Is there anyway to automatically log someone into a project provided > they are allowed to see it in the first place? > >>From what I can tell so far, following the instructions in the > TracGuide will still require the user to do the following to login to > trac project: > > * Click on the Login link > * Enter their username/password > > Now, I realize they can save this information in the browser of their > choice and they will be automatically logged in while the username/ > password combo remains valid. However, we require that users change > their windows/network passwords every 30 days. This would mean they > would be prompted to re-enter their credentials the next time they > went into Trac. That would annoy me. >
Firstly, I'd question the policy of requiring changing network passwords regularly (it sounds from your post that you set this policy). Every argument I've heard for forcing password changes is nothing more than a workaround for failures of basic security procedures. See the footnote of http://wolfram.org/writing/howto/password.html http://searchsecurity.techtarget.com/ateQuestionNResponse/0,289625,sid14_gci948906,00.html?track=identity With no automatic password expiry, you've got no problem. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Trac Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/trac-users?hl=en -~----------~----~----~----~------~----~------~--~---
