[Date Prev][Date Next] [Chronological] [Thread] [Top]

GDM + pwdPolicy problem

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: GDM + pwdPolicy problem
From: cbulist <cbulist@gmail.com>
Date: Thu, 13 Dec 2012 10:00:06 -0600
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=8BI6TNl3NcNqGfiOWD87yybLjALSk+6ndOOoo8JHieA=; b=Apyd/d1HxFETgQ/g3E6jnusyjjArpT7WQiQSmcPrv8OjIwFN3snvzmuSqif+aA9MW/ xvPLUbrcf4RJQ1RNCmskuc3FYWi+CKPMzr4q5ZiOzgSJM0pxH6I4O7N0AYwFdN3VqPCh EUSyUMuDIGRDPDOj3p37ArMI4g6njxo6TGFZp1j8HJQBgyeftt+ClSzp3+x6Tkhf+55Y yPQ18PzF1P9gNw90wMiNdKBk7NNcKg+vGgcA2Zj3ixQuIR+sOV9d3oM77cNhqGndH5Xd JBYnuYGSK3ZY463Mg6cSx/n49pHsw6dqP2Q1Zf/QwyihFvaeGsFQvg+Z5wi3G9U/774N Hiyw==
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.24) Gecko/20111108 Fedora/3.1.16-1.fc14 Thunderbird/3.1.16

Hi,

We have a problem using Red Hat 5.7, gdm 2.16.0-59 y pwdPolicy.

When an account gets pwdMaxAge limit and the user try to login using GUIthe user doesn't receive any warning about expiration account, it justrequests the user and password like a normal login and it fail. Thewarning works if the user try login by SSH.If we use pwdReset the user get the warning message and it is able tochange the password.

We comment pwdPolicy rules and using shadow attributes gdm works fine.

We tried the same configuration with a Red Hat 6 server and everythingworks fine but we are not able to change our Red Hat version now.Our requirements are keep the password history and we tried pam_unixremember=3 option in /etc/pam.d/system-auth with /etc/security/opasswdbut It did not work.

We can go with shadow attributes as long as we keep the password history.
Any idea?

Thanks in advance!

Prev by Date: Re: How to find a users last password change date/time
Next by Date: best practices for backing up ldap configuration
Index(es):
- Chronological
- Thread