[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problem with "force user to password reset at first login



Thanks Michael for your quick response,

I am sorry I am clear on this as i have setup this LDAP for the first time, can you please elaborate more on it and route me toward right configuration.

Thanks & Regards
Raj




From:        Michael Ströder <michael@stroeder.com>
To:        Rajagopal Rc <rajagopal.rc@tcs.com>
Cc:        openldap-technical@openldap.org
Date:        11/25/2015 03:45 PM
Subject:        Re: Problem with "force user to password reset at first login
Sent by:        "openldap-technical" <openldap-technical-bounces@openldap.org>




Rajagopal Rc wrote:
> Please suggest the process to achieve this

The solution is to set a *separate* temporary password attribute and,
depending on your security requirements and system environment, hand over the
user different parts of it through different channels.

Ciao, Michael.

> From:   Michael Ströder <michael@stroeder.com>
> To:     Rajagopal Rc <rajagopal.rc@tcs.com>,
> openldap-technical@openldap.org
> Date:   11/21/2015 10:09 PM
> Subject:        Re: Problem with "force user to password reset at first
> login
>
>
>
> Rajagopal Rc wrote:
>> I am trying to force users to change their password at first login or
>> after password reset by administrator.
>
> I always recommend to define a better password reset process where the
> admin
> never has complete knowledge of a temporary reset password. Then you
> simply
> don't need 'pwdReset'.
> [..]


=====-----=====-----=====
Notice: The information contained in this e-mail
message and/or attachments to it may contain
confidential or privileged information. If you are
not the intended recipient, any dissemination, use,
review, distribution, printing or copying of the
information contained in this e-mail message
and/or attachments to it are strictly prohibited. If
you have received this communication in error,
please notify us by reply e-mail or telephone and
immediately and permanently delete the message
and any attachments. Thank you