Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 448786

Summary: PassSync doesn't use the LDAP Password Modify Extended Operation
Product: [Retired] 389 Reporter: Loris Santamaria <loris.santamaria>
Component: Sync ServiceAssignee: Rich Megginson <rmeggins>
Status: CLOSED DEFERRED QA Contact: Orla Hegarty <ohegarty>
Severity: low Docs Contact:
Priority: low    
Version: 1.1.0CC: jgalipea, nhosoi, nkinder
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-11-19 22:22:30 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 495079, 512820, 690316    

Description Loris Santamaria 2008-05-28 19:52:33 UTC 
Description of problem:

PassSync does a ldapmodify on the userPassword attribute on FDS. So an optional
password change plugin on FDS, like ipa-pwd-extop, never gets triggered
  
Actual results:

Only the userPassword attribute is changed on FDS 

Expected results:

UserPassword, samba hashes and krbPrincipalKey should get modified when using a
password change plugin like ipa-pwd-extop


Additional info:
Comment 1 Rich Megginson 2009-04-09 17:16:05 UTC 
This falls under the category of RFC correctness
Comment 3 Martin Kosek 2012-01-04 13:45:04 UTC 
Upstream ticket:
https://fedorahosted.org/389/ticket/122
Comment 4 Noriko Hosoi 2015-11-19 22:22:30 UTC 
Closing this bug since we moved to the ticket system:
https://fedorahosted.org/389/ticket/122