On Sat, Mar 24, 2012 at 04:02:59PM +0100, Petter Reinholdtsen wrote:
> [Petter Reinholdtsen]
> >> So one could set it back to the default by executing
> >>
> >> kadmin.local -q "modpol -maxlife 0secs users"
> >>
> >> New user accounts should then have: Password expiration date: [none]
> >
> > It even affected old users:
>
> Gah, my mistake. pere was the first user, which si not affected by
> this problem. An old user did not get its password expiration date
> changed to 'none' by using the command above.
The change will take place as soon as the user changes the password.
Please check this script.
#!/bin/bash
#
# /usr/share/debian-edu-config/tools/password-fix
#
# Fix password expiring after 2 days; for new users the password will never
# expire. For existing users this will be the case after they've changed
# their password. Give old users the chance to change the password, exclude
# not affected accounts: templates and first user
#
for i in $(getent passwd|grep home0|grep -v newteacher|grep -v newstudent|grep -v 1000:1000|cut -d: -f1)
do
kadmin.local -q "modprinc -pwexpire 7000days $i"
done
kadmin.local -q "modpol -maxlife 0secs users"
Wolfgang
Attachment:
signature.asc
Description: Digital signature