URL: https://rol.redhat.com/rol/rhz/rhls/course/rh362-7.4/ch10s04
Reporter RHNID: harpasin@redhat.com
Section: 11.4 - Lab: Manage Red Hat Identity Management
Language: en-US (English)
Workaround: None

Description: Lab MANAGE RED HAT IDENTITY MANAGEMENT

Task 1. Create a user group, idmgroup01. Set a password policy for the new group, which requires that the password of the group's member users be a minimum of eight characters and that login attempts are blocked after two failed attempts. This should be the highest priority password policy.

In Solution highest priority value is 1 same in Grading Script user will pass if he sets highest priority to 1.

But under Password Policy Priorities Section 2.1 (p40) it is written that "If a user has multiple group password policies assigned, the one with the lowest priority value takes precedence and all rules defined in other policies are ignored.
The priority of a group password policy is configured using the --priority option. The lowest supported priority value is 0." 

According to this higest priorty is 0.

Same thing mentioned in documentation also point 28.2.3 that 0 has highest priorty

Ref:- _https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/linux_domain_identity_authentication_and_policy_guide/pwd-policies-how_

Either lab solution and grading script is wrong or zero is not higest priority.

Please check which one is wrong

Thanks

Harpal Singh