[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: password expiry and ldap

21 sep 2006 kl. 20.40 skrev Václav Hůla:

> So, after hours of googling and looking into wrong places, I can  
> reply to my
> own post ;)
> Dne Wednesday 20 September 2006 13:58 Václav Hůla napsal(a):
>> kadmin> mod --pw-expiration-time=2006-08-16 ax
>> kadmin: kadm5_modify_principal: Unknown error 36150281
> this happens when the account in ldap has both krb5 and samba  
> classes. The
> quick and dirty solution is to disable storing of  
> krb5EncryptionType in
> database

Ok, so I should fix this bug, glad that you found a way to workaround  
it though.

>> Can please anybody give me any hint? Is password aging even  
>> supposed to
>> work in this config?
> but the accounts were created with samba flag [X], which means "do not
> expire". It looks like its working well now.

So the interaction between samba accounts and heimdal accounts is  
to say at least.