[Freeipa-users] Password requirements too stringent
Tim Hildred
thildred at redhat.com
Tue Sep 18 01:25:57 UTC 2012
Hey all;
I'm running IPA internally to control access to our cloud environment.
I must admit, I do not understand the password requirements. I have had them set to the defaults. I read this:
https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Identity_Management_Guide/user-pwdpolicy.html
I have the minimum character classes set to 0. When people use SSH to change their passwords, they get "Based on a dictionary word" for passwords that have nothing to do with dictionary words.
I can't find anywhere in the documentation a break down of what makes an unacceptable versus acceptable password.
Can anyone help me figure out what to tell my users? I think people would get a lot less frustrated if they knew why "C679V375" was "too simple" when the password policy has 0 required classes.
Tim Hildred, RHCE
Content Author II - Engineering Content Services, Red Hat, Inc.
Brisbane, Australia
Email: thildred at redhat.com
Internal: 8588287
Mobile: +61 4 666 25242
IRC: thildred
ps: funny exchange with user:
Jul 12 14:12:33 <user1> i feel like im being punked
Jul 12 14:12:40 <user1> it is based on a dictionary word
Jul 12 14:12:43 <user1> it is too short
Jul 12 14:12:49 <user1> is does not have enough unique letters
Jul 12 14:12:51 <user1> etc
More information about the Freeipa-users
mailing list