[Pkg-shadow-devel] Bug#668998: passwd: Can't expire users stored in LDAP
Nicolas François
nicolas.francois at centraliens.net
Thu Aug 15 21:59:13 UTC 2013
severity 668998 wishlist
tags 668998 wontfix
thanks
On Mon, Apr 16, 2012 at 01:50:02PM +0200, Per Carlson wrote:
>
> While passwd can change the password for a user stored in a LDAP
> repository, it can't "expire" the password. This would be very handy
> for an administrator helping users resetting their passwords.
passwd uses PAM to update a password, but PAM does not have a routine to
expire a password.
Expiring LDAP password in passwd would require to give LDAP knowledge to
passwd, which is not planned.
In case of patch (and if there is a single LDAP schema for storing
passwd/shadow like information), this could be reconsidered.
Until then, the relevant LDAP tools must be used.
Best Regards,
--
Nekral
More information about the Pkg-shadow-devel
mailing list