Bug 912223

Summary: pwd_expiration_warning has wrong default for Kerberos
Product: [Fedora] Fedora Reporter: Jakub Hrozek <jhrozek>
Component: sssdAssignee: Jakub Hrozek <jhrozek>
Status: CLOSED CURRENTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 18CC: grajaiya, jgalipea, jhrozek, okos, pbrezina, sbose, sgallagh, ssorce
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 911329 Environment:
Last Closed: 2013-04-10 11:02:40 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 911329    
Bug Blocks: 911331    

Description Jakub Hrozek 2013-02-18 07:26:43 UTC 
+++ This bug was initially created as a clone of Bug #911329 +++

This bug is created as a clone of upstream ticket:
https://fedorahosted.org/sssd/ticket/1808

The sssd.conf man page states that the default for pwd_expiration_warning should be 7 days for Kerberos, but it's not. It's actually 0, which means "always display warning if the server sends one". This is very irritating in environments such as IPA or AD.
Comment 1 Jakub Hrozek 2013-04-10 11:02:40 UTC 
This was already fixed in all supported Fedora releases.