t the passwordExpirationTime as following:
>
> passwordExpirationTime: 1970010100Z
>
>
> It should force the user to change their password on their next login.
> Keep
> in mind you will not get a prompt if use use a passwordless ssh login via
> rsa key exchange.
>
> Hope that
I know this is outside the scope of the 389 list, but my Google-fu is
failing me on this one.
If I change the password to the account on the LDAP server and verify
"passwordmustchange: on," I can ssh in to the test host with the new
password all day long, and never get asked to change it.
I'm hop
ere.
>
> -- C.
>
> From: 389-users-boun...@lists.fedoraproject.org
> [389-users-boun...@lists.fedoraproject.org] On Behalf Of David Barr
> [daf...@dafydd.com]
> Sent: Wednesday, June 08, 2011 4:43 AM
> To: General discussion
Good Morning!
Take 30 hosts, all with identical
/etc/nsswitch.conf
/etc/ldap.conf
/etc/ssh/ssh_config
/etc/ssh/sshd_config
/etc/auto.master and subsidiary files
The only two hosts where LDAP authentication fails are the two Oracle
servers. All are running on the same RHEL 5.4.
Anyone seen anyth
Good Morning!
I get the trick of setting a password policy to force a password change on the
next login, and I've implemented.
What I think I'm missing is the piece that goes into the login process
somewhere and actually checks the need for a reset and forces the execution of
[ldap]passwd as t
