SAMBA4 AD: change the user password after the first login

(tommy) #1

Thanks for your help.
I’m trying to use nethserver in my company, all things works great but i just wondering is there an option that requires user change their password after first login, after user created with a initial password?

LDAP email address is all empty
User change password after login
LDAP email address is all empty
(Markus Neuberger) #2

Good morning @tommycloud,

it should be possible with RSAT Tools under Windows.

For command line I found this:

pdbedit -u user --pwd-must-change-time 0


(tommy) #3

Thanks for your help.
So i need to do this everytime i created a user.
I’d prefer there’s an option for this in the web console while creating user.

(Stéphane de Labrusse) #4

it could be imagined a check box (change password the next login) then use the samba-tool set-password option : --must-change-at-next-login

In fact it is a real common case for a system administrator. In my company the first password is a dummy one ( ‘Bonjour123’) but when I login the first time I set a new password following the password policy.

@dev_team something should be done here

(Giacomo Sanchietti) #5

Shouldn’t be so hard to do (at least the backend part).

Added to the todo list:

(Stéphane de Labrusse) #6

the expect function is broken by the --must-change-at-next-login setting, need to check.

The symptom are that the user appears blocked after the password change

(Stéphane de Labrusse) #7

Same behaviour as @Wellington_Rodrigues the command works without errors but at the first login the user is not directed to change his password

(Wellington Rodrigues) #8

Yes, it didn’t work.
I had to create a default password for all users here in the company. To change the password we use CRLT + ALT + DEL >> Change a password.