Re: Password Sync - Extended Characters nothing happnes?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi,

 

  The password sync service between AD and Directory server appears to “can” passwords with extended characters.

  I’m working for a client in Belgium at the moment and they’re quite accent happy with passwords.

 

  Now, Active Directory happily accepts these passwords but I don’t even get a sniff of the password change attempt in the audit log from in 389-DS.

  Is this a bug or by design ?

http://port389.org/wiki/Howto:WindowsSync#PassSync_Logging

Thanks Rich ( I don’t normally get access to windows logs J).

 

04/02/12 14:42:22: Modify password failed for remote entry: uid=<user>,ou=People,<blah>

04/02/12 14:42:22: Deferring password change for <user>

04/02/12 14:42:24: Ldap error in ModifyPassword

      19: Constraint violation

 

No problem, bit of digging around tells me that there is a 7 bit character constraint on passwords (7-bit check plugin).

What I don’t understand is why there is nothing on the Linux side, surely:

04/02/12 14:42:24: Ldap error in ModifyPassword

Means that the password change has been attempted and rejected by the server, so why am I not seeing anything in the logs on the server?

 

Regards,

Brett

 

-------------------------------------------------------------------

GreeNRB
NRB considers its environmental responsibility and goes for green IT.
May we ask you to consider yours before printing this e-mail?  

NRB, daring to commit
This e-mail and any attachments, which may contain information that is confidential and/or protected by intellectual property rights, are intended for the exclusive use of the above-mentioned addressee(s). Any use (including reproduction, disclosure and whole or partial distribution in any form whatsoever) of their content is prohibited without prior authorization of NRB. If you have received this message by error, please contact the sender promptly by resending this e-mail back to him (her), or by calling the above number. Thank you for subsequently deleting this e-mail and any files attached thereto.

 
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux