Hi Harry, seems that you are using the setting "User must change password after reset" (passwordMustChange: on). So, if a user password is reset by admin user, the password expiration time will be set to epoch 0: 19700101000000Z and it will be set to the right expiration time once the user has modified the password itself. If you set passwordMustChange to off, the password expiration time will be set to current time + 90 days in any case. thanks and regards, German. ----- Original Message ----- > From: "harry devine" <harry.devine@xxxxxxx> > To: 389-users@xxxxxxxxxxxxxxxxxxxxxxx > Sent: Tuesday, April 7, 2015 2:11:44 PM > Subject: Issue changing user password > > > > I have a PHP script that uses the PHP LDAP functions to change a user’s > password. I’ve noticed that when the password gets changed, the > passwordexpirationtime attribute gets reset to 19700101000000Z. Our policy > is to change passwords 90 days. Is there some setting in 389-ds that I need > to set to have this happen automatically? Or do I have to set the > passwordexpirationtime attribute myself when changing the password? > > > > Thanks, > > Harry > > > > Harry Devine > > DOT/FAA/AJM-2413 > > Common ARTS Software Development > > harry.devine@xxxxxxx > > (609)485-4218 > > > > -- > 389 users mailing list > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
