[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problem with "force user to password reset at first login



Rajagopal Rc wrote:
> Please suggest the process to achieve this

The solution is to set a *separate* temporary password attribute and,
depending on your security requirements and system environment, hand over the
user different parts of it through different channels.

Ciao, Michael.

> From:   Michael Ströder <michael@stroeder.com>
> To:     Rajagopal Rc <rajagopal.rc@tcs.com>, 
> openldap-technical@openldap.org
> Date:   11/21/2015 10:09 PM
> Subject:        Re: Problem with "force user to password reset at first 
> login
> 
> 
> 
> Rajagopal Rc wrote:
>> I am trying to force users to change their password at first login or 
>> after password reset by administrator.
> 
> I always recommend to define a better password reset process where the 
> admin
> never has complete knowledge of a temporary reset password. Then you 
> simply
> don't need 'pwdReset'.
> [..]

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature