Re: Forcing new users to change their password on first login?

To: debian-edu@lists.debian.org
Subject: Re: Forcing new users to change their password on first login?
From: Petter Reinholdtsen <pere@hungry.com>
Date: Thu, 2 Sep 2010 23:39:29 +0200
Message-id: <[🔎] 20100902213929.GD4067@login2.uio.no>
In-reply-to: <[🔎] 201009022325.17926.klaus@skolelinux.no>
References: <2fl4oiqr0jw.fsf@login2.uio.no> <[🔎] 201009022258.30315.rgx@gmx.de> <[🔎] 201009022325.17926.klaus@skolelinux.no>

[Klaus Ade Johnstad]
> I did something similar before.
> 
> Read this thread
> 
> http://www.mail-archive.com/debian-edu@lists.debian.org/msg05866.html

Thank you for the reminder.  Had completely forgotten about this when
I started the tread Ralph replied to.

I notice the slapd.conf changes you had to do in 2005 is already in
place in the squeeze version of the file, so all that is needed is to
set the shadowLastChange attribute.  To get the password change to
update all the needed attributes, I'm not sure how to fix it for
openldap. For Kerberos, I filed <URL:http://bugs.debian.org/588968>,
and a patch proposal is available for testing.  Did not have time to
test it myself, nor try to get the Debian release managers to accept
the change into Squeeze.  If it get into Squeeze, we should create a
plugin for the Kerberos server to get all password attributes updated
in LDAP when kerberos is asked to change a users passwords. :)

Happy hacking,
-- 
Petter Reinholdtsen

Reply to:

References:
- Re: Forcing new users to change their password on first login?
  - From: RalfGesellensetter <rgx@gmx.de>
- Re: Forcing new users to change their password on first login?
  - From: Klaus Ade Johnstad <klaus@skolelinux.no>

Prev by Date: Re: Forcing new users to change their password on first login?
Next by Date: Your Bugzilla buglist needs attention.
Previous by thread: Re: Forcing new users to change their password on first login?
Next by thread: Re: cfengine ore any admintool runs in skole after install?
Index(es):
- Date
- Thread