[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

changepw attributes (for use with Windows)

To: heimdal-discuss@sics.se
Subject: changepw attributes (for use with Windows)
From: Dave Love <d.love@dl.ac.uk>
Date: Thu, 03 Mar 2005 23:16:28 +0000
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/21.3 (gnu/linux)

I've realized that the reason that the Windows password-changing
protocol didn't work for me with pass-through login is just that the
kadmin/changepw principal has disallow-forwardable in the attributes
set up by kadmin init -- the request from Windows XP is for a
forwardable one.  I'm surprised others don't have the same problem.

Removing the attribute solves the problem.  Is removing it a bad thing
to do generally?

Prev by Date: newbie problem initializing realm with ldap backend
Next by Date: Openldap simple bind
Prev by thread: Re: newbie problem initializing realm with ldap backend
Next by thread: Openldap simple bind
Index(es):
- Date
- Thread