Tomas and I discussed today a way to prevent pam_pwquality from standing on the toes of directory/realm/domain policy when non-local users change their own passwords. This was discussed a bit in bug #815405, but we came up with a way that should be acceptable to implement.
Created attachment 604635 [details] Add local_users_only option This patch adds a local_users_only option. When this option is set pam_pwquality checks whether the user shows up in the results of fgetpwent_r(). If the user does not show up there, then the passwords and updates the various authtoks, but does not check the quality of the password.
libpwquality-1.2.0-1.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/libpwquality-1.2.0-1.fc18
Package libpwquality-1.2.0-1.fc18: * should fix your issue, * was pushed to the Fedora 18 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing libpwquality-1.2.0-1.fc18' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2012-12020/libpwquality-1.2.0-1.fc18 then log in and leave karma (feedback).
libpwquality-1.2.0-1.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.