Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
honour krb5PasswordEnd also if sambaPwdLastSet
Commit 9f696b1 changed the behaviour of key expiry for principals that have an sambaPwdLastSet attribute in LDAP. The change was twofold: * if "password_lifetime" is not set in kdc.conf a default lifetime of 1 year is enforced * krb5PasswordEnd is not honoured. This patch causes pw_end to be modified only if sambaPwdLastSet *and* "password_lifetime" is defined in kdc.conf. Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
- Loading branch information