[Ltb-users] Self Service Password Policy (History)
clement.oudot at savoirfairelinux.com
Thu Oct 6 17:06:27 CEST 2016
Le 06/10/2016 à 16:56, Michael a écrit :
> Hello -
first, you need to regsiter to the list to be able to post and receive
> Iv'e noticed the the self-service tool does not provide any means to
> respect the OpenLDAP password policy and there's nothing in the LTB
> self service policy that restricts history sans the initial re-use of
> the same password. Is there any way to get the application to respect
> the OpenLDAP password policy (pwdInHistory) value or PAM?
Not for the moment, as PHP-LDAP is not compatible with password policy
You can prevent the user to reuse the same password as the current
password when changing it, but can't check for the old passwords in LDAP.
Consultant en logiciels libres, Expert infrastructure et sécurité
137 boulevard de Magenta - 75008 PARIS
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the ltb-users