Password Syntax Checking

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I just installed Fedora Directory Server 1.02 on my FC4 box and all looks
fine.  I was able to successfully login using LDAP authentication and change
my password.  I tested password expiration and notification and that worked
fine.  However, I am not able to get the password syntax checking to work.
I have the "Enable fine-grained password policy" checked under the
Configuration tab and I have created a password policy for the subtree of
"People" and on an individual user.

As user bsmith:

-bash-3.00$ passwd
Changing password for user bsmith.
Enter login(LDAP) password:                                          #
previous password blha123
New UNIX password:                                                      #
new password foo123bar
Retype new UNIX password:
LDAP password information changed for bsmith
passwd: all authentication tokens updated successfully.


-bash-3.00$ passwd
Changing password for user bsmith.
Enter login(LDAP) password:                                        #
previous password foo123bar
New UNIX password:                                                    # new
password blha123 which was the password b4 foo123bar
Retype new UNIX password:                                         # which
suggest password history does not work for command line
LDAP password information changed for bsmith
passwd: all authentication tokens updated successfully.


In both cases above the "Password Syntax" section of the Subtree Password
Policy was used.  The "Password minimum length" was set to 10 which should
have caused a failure above.  Minimun required digit, alpha, uppercase and
lowercase were all set to 1 which should have caused a failure on upper case
in the examples above if I am understanding the usage correctly.

I tried to change the password from the web interface and it does error out,
but does not provide a descriptive error message.

It is probalby something simple that I am leaving out, but I could not find
the answers in the archives or in the documentation.  Any help would be
greatly appreciated.

Setup:

FC4 with fedora-ds-1.0.2-1.RHEL4.i386.opt.rpm installed.

************************************************************
/etc/ldap.conf

pam_lookup_policy yes
pam_password exop
ssl no
pam_password md5
host ds.example.com
base dc=example,dc=com
tls_cacertdir /etc/openldap/cacerts
************************************************************


--
Bracey Summers
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fedoraproject.org/pipermail/389-users/attachments/20060306/05e334df/attachment.html
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux