Bug 1500975 - pwquality configuration causes clevis bind luks to fail
Summary: pwquality configuration causes clevis bind luks to fail
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: clevis
Version: 7.4
Hardware: All
OS: Linux
Target Milestone: rc
: ---
Assignee: Nathaniel McCallum
QA Contact: Jiri Jaburek
Mirek Jahoda
Depends On:
TreeView+ depends on / blocked
Reported: 2017-10-11 21:28 UTC by Vinay Mishra
Modified: 2021-06-10 13:14 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
The "clevis luks bind" command no longer fails with the DISA STIG-compliant password policy Previously, passwords generated as part of the "clevis luks bind" command were not compliant with the Defense Information Systems Agency Security Technical Implementation Guide (DISA STIG) password policy set in the `pwquality.conf` file. Consequently, "clevis luks bind" failed on DISA STIG-compliant systems in certain cases. With this update, passwords are generated using a utility designed to generate random passwords that pass the password policy, and "clevis luks bind" now succeeds in the described scenario.
Clone Of:
Last Closed: 2018-04-10 18:27:23 UTC
Target Upstream Version:

Attachments (Terms of Use)

System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2018:0985 0 None None None 2018-04-10 18:27:44 UTC

Comment 11 errata-xmlrpc 2018-04-10 18:27:23 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.