[Freeipa-users] Password expiration dates are different when being resetted by the (primary) admin and a different admin
Zip Ly
ziplyx at gmail.com
Thu Aug 28 14:18:47 UTC 2014
Hi,
I'm trying to change a user password without reset.
If I use the (primary) admin to change the password then it doesn't need a
password reset, because the expire lifetime is 90 days.
But if I create a second admin, then every password change made by the
second admin needs a password reset, because the password is expired
immediately.
1a) Does anyone knows how I can change the policy/privilege of the second
admin so every password change doesn't require a reset? 1b) and is it
possible to set a different expire lifetime like zero for unlimited
lifetime?
It's almost the same bugreport as
https://fedorahosted.org/freeipa/ticket/2795 but the difference is there
should be 2 policies: one for changing your own password and another for
resetting other users password.
2) Are there more differences in policies between the first (primary) admin
and the second admin you just created?
Kind regards,
Zip
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140828/053478bb/attachment.htm>
More information about the Freeipa-users
mailing list