54251 – Sync passwordhistory to/from Samba4

Bug 54251 - Sync passwordhistory to/from Samba4

Summary: Sync passwordhistory to/from Samba4

Status:	NEW

Alias:	None

Product:	UCS
Classification:	Unclassified
Component:	S4 Connector
Version:	UCS 5.0
Hardware:	Other Linux

Importance:	P5 normal
Target Milestone:	---
Assignee:	Samba maintainers
QA Contact:	Samba maintainers

URL:
Keywords:

Depends on:
Blocks:

Reported:	2021-12-15 10:54 CET by Julia Bremer
Modified:	2022-06-15 15:29 CEST (History)
CC List:	3 users (show)

See Also:	52230
What kind of report is it?:	Bug Report
What type of bug is this?:	5: Major Usability: Impairs usability in key scenarios
Who will be affected by this bug?:	1: Will affect a very few installed domains
How will those affected feel about the bug?:	2: A Pain – users won’t like this once they notice it
User Pain:	0.057
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Customer ID:
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Julia Bremer

2021-12-15 10:54:09 CET

The passwordhistory attribute ntpwdhistory/sambaPasswordHistory is not synchronized between openLDAP and Samba4.

This means that a password, set via UDM (e.g. by an Administrator) and expired,
can be set to the exact same password in the UMC login dialog, even if the pwhistory setting is enabled in Samba.