Bug 1845094
| Summary: | User/Directory Manager can modify Password Policy attribute "pwdReset" | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 8 | Reporter: | Akshay Adhikari <aadhikar> | ||||
| Component: | 389-ds-base | Assignee: | mreynolds | ||||
| Status: | CLOSED ERRATA | QA Contact: | RHDS QE <ds-qe-bugs> | ||||
| Severity: | unspecified | Docs Contact: | |||||
| Priority: | unspecified | ||||||
| Version: | 8.3 | CC: | gkimetto, jobuckle, nsoman, pasik, spichugi, tbordaz, vashirov | ||||
| Target Milestone: | rc | Keywords: | AutomationBackLog | ||||
| Target Release: | 8.0 | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | 389-ds-base-1.4.3.8-4.module+el8.3.0+7193+dfd1e8ad | Doc Type: | If docs needed, set a value | ||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2020-11-04 03:08:03 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Attachments: |
|
||||||
https://pagure.io/389-ds-base/issue/50912 Fixed upstream. Build tested: 389-ds-base-1.4.3.8-5.module+el8.3.0+7569+08175a8a.x86_64 When pwdReset attribute is modified by user or DM, server returns err=53, as expected. Marking as VERIFIED. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (389-ds:1.4 bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2020:4695 |
Created attachment 1696086 [details] pwdReset_attachment Description of problem: User/Directory Manager can modify Password Policy attribute "pwdReset" which is incorrect as it is an operational attribute. Version-Release number of selected component (if applicable): 389-ds-base-1.4.3.8-3.module+el8.3.0+6935+6f68b788.x86_64 How reproducible: Every-time Steps to Reproduce: 1. Enable passwordMustChange 2. Add a user 3. Reset the user's password 4. Modify pwdReset to FALSE Actual results: Password Policy attribute "pwdReset" is getting modified. Expected results: Password Policy attribute "pwdReset" should not get modified. Additional info: The attachment has commands and output.