Sun Kerberos Password Expiration Problems with OpenSSH 3.7.1p2
Darren Tucker
dtucker at zip.com.au
Wed Dec 3 10:55:28 EST 2003
"Knox, Timothy P - Eagan, MN" wrote:
>
> I am running Solaris 8 with the Basic Security Module (BSM) loaded and
> Sun's Enterprise Authentication Mechanism (SEAM) installed. Our servers
> are using Sun One Directory Services (LDAP) for authorization and Sun's
> Kerberos 5 implementation for authentication. We have been using OpenSSH
> 3.4p1 with OpenSSL 0.9.6f and everything has been working fine.
>
> We are updating our OpenSSH and OpenSSL versions to 3.7.1p2 and 0.9.7c,
> respectively.
>
> Everything works fine except for having a Kerberos users' password
> expired, either through modprinc +needchange user or through an
> expiration date that has already passed.
Try the password expiration patch (pwexp26) here:
http://www.zip.com.au/~dtucker/openssh/
It should work in your configuration.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list