diff options
| author | Patrick Uiterwijk <puiterwijk@redhat.com> | 2016-11-23 12:42:10 +0000 |
|---|---|---|
| committer | Patrick Uiterwijk <puiterwijk@redhat.com> | 2016-11-23 13:28:54 +0000 |
| commit | c9c904f2bd63ca7563b772ec3f28041716cb24db (patch) | |
| tree | dcb1da4cb2658ab6f268b050503f2db806dae443 | |
| parent | 75111035164619d97b32bb1bf5ed5b342015dd86 (diff) | |
| download | ansible-c9c904f2bd63ca7563b772ec3f28041716cb24db.tar.gz ansible-c9c904f2bd63ca7563b772ec3f28041716cb24db.tar.xz ansible-c9c904f2bd63ca7563b772ec3f28041716cb24db.zip | |
Disable password expiration
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
| -rw-r--r-- | roles/ipa/server/files/configure-ipa.sh | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/roles/ipa/server/files/configure-ipa.sh b/roles/ipa/server/files/configure-ipa.sh index 5c1e0ca51..4fc299187 100644 --- a/roles/ipa/server/files/configure-ipa.sh +++ b/roles/ipa/server/files/configure-ipa.sh @@ -23,6 +23,9 @@ ipa user-add fas_sync --first=FAS --last=Sync # Allow sync user to create and edit users ipa group-add-member admins --users=fas_sync +# Disable password expiration +ipa pwpolicy-mod global_policy --maxlife=0 --minlife=0 --history=0 --minclasses=0 --minlength=0 --maxfail=0 + # Allow sync user to update passwords ldapmodify -x -H ldapi://%2fvar%2frun%2fslapd-FEDORAPROJECT-ORG.socket <<EOF dn: cn=ipa_pwd_extop,cn=plugins,cn=config |