RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 1273040 - [RFE] Automatically disable user accounts that have not been used for a specific period of time
Summary: [RFE] Automatically disable user accounts that have not been used for a speci...
Keywords:
Status: CLOSED DEFERRED
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: ipa
Version: 7.0
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: rc
: ---
Assignee: Florence Blanc-Renaud
QA Contact: Namita Soman
URL:
Whiteboard:
Depends On:
Blocks: 1654395
TreeView+ depends on / blocked
 
Reported: 2015-10-19 12:43 UTC by Petr Vobornik
Modified: 2021-09-09 11:43 UTC (History)
29 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
: 1654395 (view as bug list)
Environment:
Last Closed: 2020-03-30 10:00:40 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Description Petr Vobornik 2015-10-19 12:43:15 UTC
This bug is created as a clone of upstream ticket:
https://fedorahosted.org/freeipa/ticket/4975

Create a policy that would define for how log the user account can be inactive (no authentications) until it would be disabled automatically in IPA.

This is driven by PCI compliance requirements.

Comment 2 Petr Vobornik 2015-10-19 21:27:50 UTC
Workaround: ​https://www.redhat.com/archives/freeipa-users/2015-March/msg00052.html

Comment 9 Martin Kosek 2016-07-01 13:20:45 UTC
(In reply to Petr Vobornik from comment #2)
> Workaround:
> ​https://www.redhat.com/archives/freeipa-users/2015-March/msg00052.html

Please note that I just realized that this workaround only works under certain conditions:
- it is an environment with single IdM master
- OR, krbLastSuccessfulAuth is replicated (see https://fedorahosted.org/freeipa/ticket/5970)
- OR, if the script checks krbLastSuccessfulAuth on *all* IdM servers and uses the most recent one.

Comment 19 kludhwan 2019-10-08 10:58:57 UTC
Hello,

Do we have any update for the customers?

Are we planing this feature to be included in rhel7?

Thanks,
Kushal

Comment 22 Petr Čech 2019-12-09 19:45:21 UTC
We are closing this RFE because of the life cycle of RHEL-7.

Comment 23 JaredL 2019-12-09 19:49:37 UTC
Petr - Will there be a new issue opened for tracking this RFE for RHEL-8? 

This is still something many folks watching this issue would love to see in Idm and isn't a feature in RHEL-8 either.

Comment 24 Petr Čech 2019-12-10 13:56:45 UTC
I closed it accidentally. Thanks for note, we moved it to RHEL-8.

Comment 27 François Cami 2020-03-30 09:54:09 UTC
Moving back to RHEL7.
https://bugzilla.redhat.com/show_bug.cgi?id=1654395 is the right bugzilla for RHEL8.
Please attach new cases only to https://bugzilla.redhat.com/show_bug.cgi?id=1654395 .

Comment 29 François Cami 2020-03-30 10:00:40 UTC
Closing as DEFERRED.
Please use https://bugzilla.redhat.com/show_bug.cgi?id=1654395 for this RFE.


Note You need to log in before you can comment on or make changes to this bug.