Tuesday, September 22, 2020

[389-users] Re: Anyway to incorporate haveibeenpwned.com db into password policy?

On 9/22/20 11:45 AM, Bryan K. Walton wrote:
> We are running 389ds with CentOS 8. Can anybody confirm if there is a
> way to check passwords against the haveibeenpwned.com database when
> users are changing passwords?

No, there is only the option to use Cracklib's database for dictionary
checks.  There is no external password checking at this time.

Regards,

Mark

>
> Thanks,
> Bryan
> _______________________________________________
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
> Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

--

389 Directory Server Development Team
_______________________________________________
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

No comments:

Post a Comment