Wrong password policy displayed for Microsoft AD

[ashwanic...@gmail.com]

Dear Sir,

I posted below query in PWM ISSUES section on 18-11-2014 but got no answer. Could you please help me on below issue:

What steps will reproduce the problem?
1.Connect PWM with Microsoft Active Directory
2.Set password policy source to LDAP
3.Connect with AD-User to PWM and read the shown policies.

What is the expected output? What do you see instead?
Expected:
The minimum password age is 0
The maximum password age is 90
The minimum password length is 6
No. of Passwords Remembered is 3

Displsayed:
Password is case sensitive.
Must be at least 6 characters long.

What version of PWM are you using?
1.7.1

What ldap directory and version are you using?
Microsoft Active Directory and Windows Server 2008 R2

Please paste any error log messages below:
None

Thanks
Ashwani

[Menno Pieters]

I don't think 1.7.1 is fully capable of reading the AD password policy. It may also depend on permissions. You may try with a nightly build. If the nightly doesn't work either, check permissions in AD.

--
You received this message because you are subscribed to the Google Groups "pwm-general" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pwm-general...@googlegroups.com.
To post to this group, send email to pwm-g...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/pwm-general/fc80b926-9330-43b1-8c29-553d553fcc88%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[ashwani]

Dear Sir,

Thanks for your reply. As far as permissions are concerned my LDAP Proxy User in PWM->Settings->LDAP Directory is configured with CN=Administrator,CN=Users,DC=DS,DC=ABC,DC=IN. Here Administrator is having full access on DC=DS,DC=ABC,DC=IN domain. If this account is reading the password policy from AD then there should not be any issue but if some other account is reading the password policy(which i don't think i have configured) then kindly let me know. Kindly tell me the stable nightly build number as i will deploy it in the production environment.

Thanks

Ashwani

--
You received this message because you are subscribed to a topic in the Google Groups "pwm-general" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/pwm-general/_T4drZfdfJw/unsubscribe.
To unsubscribe from this group and all its topics, send an email to pwm-general...@googlegroups.com.

To post to this group, send email to pwm-g...@googlegroups.com.

To view this discussion on the web visit https://groups.google.com/d/msgid/pwm-general/CALEP9tq1tv5pSvR7jz6JQN9Uf-W6e-0FBn3EzxLov69hDjbC0A%40mail.gmail.com.

[Menno Pieters]

A nightly build is per definition not considered stable. I suggest that you setup a test environment.

To view this discussion on the web visit https://groups.google.com/d/msgid/pwm-general/CANyvqbUuws40KkBy4qgypsv0e4inTs5WETykBD5SzcuFgsb%2BeQ%40mail.gmail.com.

[ashwani]

Thank you sir. I assume that LDAP proxy user is the user who reads the password policy from AD and i am thus using the right account to read the password policy.

Thanks

Ashwani

To view this discussion on the web visit https://groups.google.com/d/msgid/pwm-general/CALEP9tqQ4Z_07zM3cE%2BSTiK6Z%3DAan372zwL%2B4t%3DCqSEReTWhBQ%40mail.gmail.com.