Thank you for the response. This should help.
On Fri, Apr 18, 2014 at 5:09 AM, German Parente <gparente@xxxxxxxxxx> wrote:
Hi John,
unfortunately, Directory Manager cannot bypass password policy.
It could drive to inconsistencies if a new password matches one of the passwords kept in history.
Eventually, a workaround would be just to reset passwordhistory of a certain user like this:
ldapmodify -ZZZ -D "cn=directory manager" -w <password> -h localhost
dn: uid=test01,ou=People,dc=**,dc=**,dc=**
changetype: modify
delete: passwordHistory
This has been described, for instance, in:
https://access.redhat.com/site/solutions/791773
regards,
German.
----- Original Message -----
> From: "John Trump" <trumpjk@xxxxxxxxx>
> To: 389-users@xxxxxxxxxxxxxxxxxxxxxxx
> Sent: Wednesday, April 16, 2014 6:10:39 PM
> Subject: Allow Directory Manager to bypass Password Policy
>
> Is it possible to allow the Directory Manager to bypass the password policy
> when resetting user passwords? I want to be able to set a users password to
> a default password. Currently if this password is in the users password
> history I can not reuse the password.
>
> --
> 389 users mailing list
> 389-users@xxxxxxxxxxxxxxxxxxxxxxx
> https://admin.fedoraproject.org/mailman/listinfo/389-users
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
