[Freeipa-users] IPA Service accounts (Bind accounts)
Dale Macartney
dale at themacartneyclan.com
Sat Jun 2 18:33:07 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Evening all
What's the recommended method for using service accounts with IPA?
For example, using a piece of software that needs to bind to LDAP (aka
Zimbra, Moodle, Joomla, etc), having a password expiry on that specific
bind user would result in the application constantly needing the
password changed.
I can see that you can modify the default password policy (i personally
don't want to change this as this works for my requirements), and also
have the ability to create additional pw policies if needed.
What's the best method to create a user, however have that password for
the new user that never expires? Am I thinking along the right lines of
using a different pw policy for the service accounts?
Thanks all
Dale
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=dM8M
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0xB5B41FAA.asc
Type: application/pgp-keys
Size: 5790 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120602/1114261d/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0xB5B41FAA.asc.sig
Type: application/pgp-signature
Size: 543 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120602/1114261d/attachment.sig>
More information about the Freeipa-users
mailing list