[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#4657) ppolicy pwdreset



On Thu, Aug 31, 2006 at 08:59:32AM +0000, arnim.rupp@lhsystems.com wrote:
> Full_Name: arnim rupp
> Version: 2.3.27
> OS: linux 2.4
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (87.106.2.16)
> 
> 
> hello,
> 
> pwdMustChange is not working. i've been setting it to "TRUE" and still there
> appears no "pwdReset" when the slapd.conf-administrator changes the password. 

That's not how it is supposed to work.
When the documentation says "password reset by administrator", it means
that the administrator sets pwdReset to TRUE in the user entry.

> when i manually set pwdReset to TRUE for the user, it is deleted after the users
> next login, but he's not forced to change the password (which might be missing
> code in the ldapbrowser i was using).

You should test this first via something simple like an authenticated
ldapsearch command. You will see that the command will fail until you
change the password.