[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
GDM + pwdPolicy problem
- To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
- Subject: GDM + pwdPolicy problem
- From: cbulist <cbulist@gmail.com>
- Date: Thu, 13 Dec 2012 10:00:06 -0600
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=8BI6TNl3NcNqGfiOWD87yybLjALSk+6ndOOoo8JHieA=; b=Apyd/d1HxFETgQ/g3E6jnusyjjArpT7WQiQSmcPrv8OjIwFN3snvzmuSqif+aA9MW/ xvPLUbrcf4RJQ1RNCmskuc3FYWi+CKPMzr4q5ZiOzgSJM0pxH6I4O7N0AYwFdN3VqPCh EUSyUMuDIGRDPDOj3p37ArMI4g6njxo6TGFZp1j8HJQBgyeftt+ClSzp3+x6Tkhf+55Y yPQ18PzF1P9gNw90wMiNdKBk7NNcKg+vGgcA2Zj3ixQuIR+sOV9d3oM77cNhqGndH5Xd JBYnuYGSK3ZY463Mg6cSx/n49pHsw6dqP2Q1Zf/QwyihFvaeGsFQvg+Z5wi3G9U/774N Hiyw==
- User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.24) Gecko/20111108 Fedora/3.1.16-1.fc14 Thunderbird/3.1.16
Hi,
We have a problem using Red Hat 5.7, gdm 2.16.0-59 y pwdPolicy.
When an account gets pwdMaxAge limit and the user try to login using GUI
the user doesn't receive any warning about expiration account, it just
requests the user and password like a normal login and it fail. The
warning works if the user try login by SSH.
If we use pwdReset the user get the warning message and it is able to
change the password.
We comment pwdPolicy rules and using shadow attributes gdm works fine.
We tried the same configuration with a Red Hat 6 server and everything
works fine but we are not able to change our Red Hat version now.
Our requirements are keep the password history and we tried pam_unix
remember=3 option in /etc/pam.d/system-auth with /etc/security/opasswd
but It did not work.
We can go with shadow attributes as long as we keep the password history.
Any idea?
Thanks in advance!