How to force open LDAP user to change their password at first login
Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
How to force open LDAP user to change their password at first login
Hi,
I have configured OpenLDAP on my one of Linux servers and set password policy for users. Everything is working fine but now I am unable to fix two requirements :
1> How we can force LDAP user to change their password at first login.
2> How to set alert on LDAP, so that User will be prompted before LPDA password expiry while login on their systems.
Hi,
I have configured OpenLDAP on my one of Linux servers and set password policy for users. Everything is working fine but now I am unable to fix two requirements :
1> How we can force LDAP user to change their password at first login.
2> How to set alert on LDAP, so that User will be prompted before LPDA password expiry while login on their systems.
See the "Question Guidelines" link in my posting signature. We are happy to help, but you need to do basic research first (and provide full details) when asking a question. You don't say what version/distro of Linux, or what kind of clients are logging in.
Both of your questions have many, MANY hits in Google, with examples and suggestions, such as "force ldap users to change password after first login", and "password expiration alert". Without knowing what you have done/tried so far, we can't suggest what may be wrong or how to fix it. What HAVE you done/tried?
Hints:
Setting ShadowLastChange may work
The pwdLastSet entity in LDAP can be read upon login; simple math done in a login script can tell you how many days and do whatever you'd like
See the "Question Guidelines" link in my posting signature. We are happy to help, but you need to do basic research first (and provide full details) when asking a question. You don't say what version/distro of Linux, or what kind of clients are logging in.
Both of your questions have many, MANY hits in Google, with examples and suggestions, such as "force ldap users to change password after first login", and "password expiration alert". Without knowing what you have done/tried so far, we can't suggest what may be wrong or how to fix it. What HAVE you done/tried?
Hints:
Setting ShadowLastChange may work
The pwdLastSet entity in LDAP can be read upon login; simple math done in a login script can tell you how many days and do whatever you'd like
Hi,
Before posting my issue on this forum, we tried all entities mentioned in your reply but none of these are working. We did a lot of google butdid not get any fruitful solution. Hence I thought to put my problem here, if any of member solve this issue.
Before posting my issue on this forum, we tried all entities mentioned in your reply but none of these are working. We did a lot of google butdid not get any fruitful solution. Hence I thought to put my problem here, if any of member solve this issue.
Thanks,
Niraj
I find multiple solutions for exactly your original questions when I use google.
Hi,
Before posting my issue on this forum, we tried all entities mentioned in your reply but none of these are working. We did a lot of google butdid not get any fruitful solution. Hence I thought to put my problem here, if any of member solve this issue.
Sorry, I doubt you tried 'all entities' you found with a Google search. Putting the phrases given to you before pulls up LOTS, with commands and examples, that do exactly what you asked.
Again: WHAT did you do/try??? And you STILL don't provide details about your system, clients, or what the results of the commands you supposedly tried were.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.