Re: expired password reset prompt (0.9.2, ppolicy)

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: "Trent W. Buck" <twb [at] cyber.com.au>
To: Arthur de Jong <arthur [at] arthurdejong.org>
Cc: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: expired password reset prompt (0.9.2, ppolicy)
Date: Mon, 5 May 2014 10:26:16 +1000

Arthur de Jong wrote:
> I only get Invalid credentials after the grace logins have expired.

Aha, that sounds promising.  Let me review my policy object; it's
quite possible it isn't set up exactly the way I think it is.

Can you send me the policy object you were testing with,
so I can compare?   IIRC I already sent mine.

> Note that the number of grace logins currently decreases by two each
> time because a second BIND is done to change the password [...]
>
> There could be some interaction with xdm that is not going
> well. [...]  Can you test with su - p (do su - nobody from root
> first) and see if you have the same behaviour?
>
> In the Git version I've improved the logging somewhat and made it
> possible to distinguish between a failed login and an expire
> password.  Also, can you check using the Git version?

Will do.

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

expired password reset prompt (0.9.2, ppolicy), Trent W. Buck
- Re: expired password reset prompt (0.9.2, ppolicy), Arthur de Jong
  - Re: expired password reset prompt (0.9.2, ppolicy), Trent W. Buck

Prev by Date: Re: expired password reset prompt (0.9.2, ppolicy)
Next by Date: Re: expired password reset prompt (0.9.2, ppolicy)
Previous by thread: Re: expired password reset prompt (0.9.2, ppolicy)
Next by thread: Re: expired password reset prompt (0.9.2, ppolicy)