On 12/14/18 12:38 PM, wodel youchi wrote:

We have 389DS as our main directory server, and we use it with many applications.
recently we moved our mail application to Zimbra. Zimbra can use an external LDAP server for authentication, and we did configure that and it works.

In 389DS, in password policy configuration, there is the check-box to force a user to change his password on the first login, we did try it but, without success.

Right, because after setting this you must reset all the passwords using directory manager(or some admin account).  Then the user is forced to change their password at next login.  Basically a flag gets set in the entry after it is reset by an admin, but until its reset there is no flag to check - so users are not forced to reset their passwords.


Could this parameter be used to force users to change their passwords?


Garanti sans virus. www.avast.com

389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org