I'm not aware of passwords not being updated based off the connection type.  It should work.

On 11/12/2012 02:03 PM, Ali Jawad wrote:

In that case I have a major overhaul that I need to complete, change password is not working for me, my assumption is that it only works with TLS enabled between the client and the server, I have tried to get TLS to run a few times but could not get it to run so far. Am I right about the assumption that I need encryption between the server and the clients for password change to work ?

Regards

On Mon, Nov 12, 2012 at 8:56 PM, Mark Reynolds <mareynol@redhat.com> wrote:

Only "crypt" uses the first 8 characters, so any other scheme would be fine.  After you change the scheme you will need to force all the users to change their passwords - otherwise their crypt passwords will still be present.

On 11/12/2012 01:52 PM, Ali Jawad wrote:

Hi All

This is an all Linux environment with 389 being used as the sole authentication mechanism, I do believe I am using crypt, I am out of office right now, what should I use instead of crypt to match more characters ?
Regards

On Mon, Nov 12, 2012 at 7:02 PM, Mark Reynolds <mareynol@redhat.com> wrote:

Also what password storage scheme are you using?  For example "crypt" only checks the first 8 characters of a password.

On 11/12/2012 11:18 AM, Dan Lavu wrote:

In regards to a password policy? Just 389 or are you using winsync with AD? Because the password policy from AD does not transfer over. Also they are some extra steps if you want to setup an OU based password policy but if you just do it for the entire directory through ‘configuration’ it works with no issues.

 

Dan

 

From: Ali Jawad <ali.jawad@splendor.net>
Sent: November 12, 2012 6:00 AM
To: General discussion list for the 389 Directory server project.
Subject: [389-users] Password + anything works ?

 

Hi

I just noticed that you can use the password+ANYLetters and it will work, I.e. if the password is xyz xyz99 or xyzABC will work as well, is this a misconfiguration on my part or a bug ?

Regards

 

--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users

--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users

-- 
Mark Reynolds
Red Hat, Inc
mreynolds@redhat.com

--

Ali Jawad   

Information Systems Manager
CISSP - PMP - ITIL V3 - RHCE - VCP - C|EH - CCNA - MCSA

Splendor Telecom (www.splendor.net)
Beirut, Lebanon
Phone: +9611373725/ext 116
FAX: +9611375554

-- 
Mark Reynolds
Red Hat, Inc
mreynolds@redhat.com

--

Ali Jawad   

Information Systems Manager
CISSP - PMP - ITIL V3 - RHCE - VCP - C|EH - CCNA - MCSA

Splendor Telecom (www.splendor.net)
Beirut, Lebanon
Phone: +9611373725/ext 116
FAX: +9611375554

-- 
Mark Reynolds
Red Hat, Inc
mreynolds@redhat.com