Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-124910

Subtree and user password policy history count cannot be set to 0

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Normal Normal
    • rhel-10.2
    • None
    • 389-ds-base
    • None
    • None
    • None
    • rhel-idm-ds
    • 0
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      Description of a problem

      Subtree and user password policies cannot have passwordInHistory attribute set to 0. This setting allows for checking only current password, but no previous password. Global password policies can have passwordInHistory set to 0.

      Version-Release number of the selected component

      rpm -q 389-ds-base cockpit-389-ds

      389-ds-base-3.1.3-5.el10_1.x86_64

      Steps to reproduce

      1. Create a subtree/user password policy
2. Attempt setting passwordInHistory to 0

      Actual results

      Fails with

      passwordInHistory: invalid value "0"

      Expected results

      Should accept 0 value

              jachapma James Chapman
              lryznaro@redhat.com Lenka Doudova
              IdM DS Dev IdM DS Dev
              IdM DS QE IdM DS QE
              Evgenia Martyniuk Evgenia Martyniuk
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: