Univention Bugzilla – Bug 49656
Better documentation for samba password requirement settings
Last modified: 2019-07-30 16:17:28 CEST
Better documentation for samba password requirement settings The documentation under: https://docs.software-univention.de/manual.html#users:password:samba suggest that these settings are only relevant for Windowsclients, but in my tests these were also used for the selfservice, the umc password change (in the hamburger menu) and passwd. I guess all of these use kerberos in some way? It would be nice if password policies were working with samba, that would make this bug unnecessary :) Previous discussions about that: bug 35809 bug 38749 bug 45128 bug 42592
*** Bug 49551 has been marked as a duplicate of this bug. ***
> It would be nice if password policies were working with samba, that would make this bug unnecessary :) There is a conceptual issue here: You can have multiple different UDM Password Policies, assigned to LDAP branches (but only a single one per DN) but Active Directory supports two types: 1. Domain Password Settings - Synchronized by S4-Connector with UDM object settings/sambadomain - But intrinsically incompatible with differential UDM policies. 2. Fine Grained Password Policies (FGPP) / Password Settings Objects (PSO) - Not (yet) synchronitzed with UDM Password Policies (See Bug 45128 Comment 2).