As user bsmith:
-bash-3.00$ passwd
Changing password for user bsmith.
Enter login(LDAP) password: # previous password blha123
New UNIX password: # new password foo123bar
Retype new UNIX password:
LDAP password information changed for bsmith
passwd: all authentication tokens updated successfully.
-bash-3.00$ passwd
Changing password for user bsmith.
Enter login(LDAP) password: # previous password foo123bar
New UNIX password: # new password blha123 which was the password b4 foo123bar
Retype new UNIX password: # which suggest password history does not work for command line
LDAP password information changed for bsmith
passwd: all authentication tokens updated successfully.
In both cases above the "Password Syntax" section of the Subtree Password Policy was used. The "Password minimum length" was set to 10 which should have caused a failure above. Minimun required digit, alpha, uppercase and lowercase were all set to 1 which should have caused a failure on upper case in the examples above if I am understanding the usage correctly.
I tried to change the password from the web interface and it does error out, but does not provide a descriptive error message.
It is probalby something simple that I am leaving out, but I could not find the answers in the archives or in the documentation. Any help would be greatly appreciated.
Setup:
FC4 with fedora-ds-1.0.2-1.RHEL4.i386.opt.rpm installed.
************************************************************
/etc/ldap.conf
pam_lookup_policy yes
pam_password exop
ssl no
pam_password md5
host ds.example.com
base dc=example,dc=com
tls_cacertdir /etc/openldap/cacerts
************************************************************
--
Bracey Summers
-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
