Univention Bugzilla – Bug 57243
Samba policy "Maximum password age" gets set to "0" when UMC configuration is set to hours/minutes/seconds
Last modified: 2024-04-29 17:55:48 CEST
UCS: 5.0-7 errata1032 In the UMC we allow the customer to change the samba password policy. We can change the "Maximum password age" and are offered seconds, minutes, hours and days as possible values. If configured to anything else than days though, after saving the policy the value is accepted in UDM but samba-tool shows the "Maximum password age" is set to "0". Here is the configuration after saving the policy with a value of 12 hours: root@primary:~# udm settings/sambadomain list DN: sambaDomainName=TIERHEIM,cn=samba,dc=tierheim,dc=intranet NextGroupRid: 1000 NextRid: 1000 NextUserRid: 1000 SID: S-1-5-21-1680174230-2814138117-3663574771 badLockoutAttempts: None disconnectTime: None domainPasswordComplex: 0 domainPasswordStoreCleartext: 0 domainPwdProperties: 0 lockoutDuration: 30 minutes logonToChangePW: None maxPasswordAge: 12 hours minPasswordAge: None name: TIERHEIM passwordHistory: 3 passwordLength: 8 refuseMachinePWChange: None resetCountMinutes: None root@primary:~# samba-tool domain passwordsettings show Password information for domain 'DC=tierheim,DC=intranet' Password complexity: off Store plaintext passwords: off Password history length: 3 Minimum password length: 8 Minimum password age (days): 0 Maximum password age (days): 0 Account lockout duration (mins): 30 Account lockout threshold (attempts): 5 Reset account lockout after (mins): 5