Bug 697695
Summary: | Account policy plug-in affects the password policy attributes. | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Rich Megginson <rmeggins> |
Component: | 389-ds-base | Assignee: | Rich Megginson <rmeggins> |
Status: | CLOSED NOTABUG | QA Contact: | Chandrasekar Kannan <ckannan> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.1 | CC: | benl, dpal, edewata, jgalipea, nhosoi, nkinder, rmeggins, shaines, sramling |
Target Milestone: | rc | Keywords: | screened |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | 691446 | Environment: | |
Last Closed: | 2011-04-21 18:45:33 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 691446 | ||
Bug Blocks: | 434915, 639035 |
Comment 2
RHEL Program Management
2011-04-19 06:00:44 UTC
I tried to reproduce this issue, and everything is working as designed. I believe I know why it looked like it was not behaving correctly. When using password expiration, the expiration time is reset first time a user does a bind after a password change. The expiration time is updated by adding the passwordWarning period to the existing expiration time. By default, this is 1 day. This means that a password will not expire for 1 day and 30 seconds if you set a 30 second expiration period and you bind within 30 seconds of changing the password (unless you change the passwordWarning value). I believe that this was happening, which made it look like the Account Policy plug-in was overriding the password policy. The best way to do this test is to set passwordWarning to 0 in the password policy. This will ensure that the password expires after 30 seconds as expected. Closing as NOTABUG. |