Clément "KPTN" OUDOT
Clément "KPTN" OUDOT
@r2evans never done that, but you can look at https://support.microsoft.com/en-us/kb/218596
Ye, it's a good idea to encrypt data inside LDAP attribute, this could be an option for the next release. We should support to read old format data anc convert...
What is your configuration? See https://self-service-password.readthedocs.io/en/v1.4.5/config_tokens.html#log
I understand the way it works but I don't think this is really needed. This will indeed require some javascript and crypto code to encrypt/decrypt on the fly. I set...
Could you tell us which version do you use?
the version is in the package name (deb or rpm) the debug logs should show information on the LDAP modification operation. If not, try to add this in your config...
Seems FreeIPA does not allow to change other fields than userPassword. And you should use LDAP extended password operation but is is not availble in 1.3. It will be in...
It should be in the error log of your web server
Indeed, as PHP-LDAP cannot deal with password policy control, we can't id password is expired in OpenLDAP. I don't see a simple solution for the moment. Note that this works...
Reading the password value inside the directory to compare it to password is really a bad practice, you bypass brute force protection of password policy be doing it. You can...