Tim,
On the UNIX side, you can use the ldapwhoami command to do this.
For example, I might do:
ldapwhoami -x -h ldapserver -D
uid=mrichard,cn=users,dc=example,dc=edu -w mypassword
to test my own password using a cleartext (password across the
network) bind. Or to use a SASL bind, I might do
ldapwhoami -h ldapserver -U mrichard -Y CRAM-MD5 - w mypassword
You can wrap this in a perl or shell script if you're handy with
the UNIX stuff. Just look at the responses that come back for a
changed vs. an unchanged password.
What's funny is I was just doing this sort of thing when your email
came in...
-Matt
We're going to start instituting a policy where users will have to
change
their password from the default they were given. We'd like to see
which
users have never changed their password so we can email them and
get them to
change their passwords before we do. Is there a script/tool
somewhere we
can use to check their passwords against the known default they have?
We're running 10.3.9 server.
Thanks,
Tim Wilkinson ITC-ACHS University of Virginia
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/matt.richard%
40fandm.edu
This email sent to email@hidden
--
Matt Richard
Access and Security Coordinator
Computing Services
Franklin & Marshall College
email@hidden
(717) 291-4157
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
