All, I just had a blip of downtime on some services recently caused by setting "Max lifetime (days)" password policy to 20000 while troubleshooting another much more minor issue. This caused services connecting to FreeIPA via LDAP to fail with error code 49, with an explanation of "Password Expired". Needless to say, none of our passwords are 20000 days old. Setting it back to 0, where it was before, solved this issue. Authentication via Kerberos or passworded SSH to enrolled hosts was unaffected. I did some searching on Pagure and couldn't find any issues like this, so I wanted to report it.
James _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
