Bug 1024959 - Initial user password is disregarded in FreeIPA password policy check
Summary: Initial user password is disregarded in FreeIPA password policy check
Status: CLOSED NEXTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: ipa
Version: 6.5
Hardware: Unspecified
OS: Unspecified
medium
unspecified
Target Milestone: rc
: ---
Assignee: Martin Kosek
QA Contact: Namita Soman
URL:
Whiteboard:
Keywords:
Depends On: 973203
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-10-30 16:20 UTC by Martin Kosek
Modified: 2013-11-04 12:29 UTC (History)
4 users (show)

(edit)
The Identity Management server does not write the initial user password correctly to password history. As a consequence, when a new Identity Management user is created and a password is generated for him, the first time that user changes the password, the value of the first password is disregarded when the password policy plug-in checks the password history. This means that user can "change" the initial password to the same value as the previous one, with no regards to the configured password history. Password history is applied correctly to all subsequent password changes.
Clone Of: 973203
(edit)
Last Closed: 2013-10-30 16:48:48 UTC


Attachments (Terms of Use)


Note You need to log in before you can comment on or make changes to this bug.