[Freeipa-users] Force to change password in first login
cbulist at gmail.com
cbulist at gmail.com
Tue Oct 8 17:28:04 UTC 2013
Rodney,
Thanks!...I forgot it totally...
Let me ask you about modify the password using ldapmodify command, I
tried changing userPassword attribute with {MD5} encryption and it did
not work.
ldapmodify -x -H ldap://ipaserver -D "cn=directory manager" -w
'password' <<EOF
changetype: modify
replace: userPassword
userPassword: {MD5}QvdJref54ZW/R183pEyvyw==
EOF
Do I need to modify another attribute?...any clue?
Thanks in advance!
On 10/08/2013 12:07 PM, Rodney L. Mercer wrote:
> I've used this to extend the password expiration. It "should" work for
> setting an expired password expiration. You have to hit enter twice
> after the krbPasswordExpiration: 20131008000000Z line.
>
> # ldapmodify -x -D 'cn=Directory Manager' -W
> Enter LDAP Password:
> dn: uid=username,cn=users,cn=accounts,dc=example,dc=com
> changetype: modify
> replace: krbPasswordExpiration
> krbPasswordExpiration: 20131008000000Z
>
>
> modifying entry
> "uid=username,cn=users,cn=accounts,dc=example,dc=com"
>
> ctrl-d
>
>
>
> On Tue, 2013-10-08 at 11:51 -0500, cbulist at gmail.com wrote:
>> Hi All,
>>
>> I created a script to add users to freeipa using ldapadd command and it
>> works great. Now I want to forcibly change the password in the first
>> user login. What attribute do I have to change to accomplish this?
>>
>> Thanks!
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-users
More information about the Freeipa-users
mailing list