PAM, Solaris, Openssh and Forcing a password change

Similar Messages

• I upgraded my ipad and now my password changed. how do i get the temp password for entry ???

  i upgraded my ipad software and now my password changed. how do i get the temp password for entry ???

  The same thing happened to me??????

• Microsoft outlook has blocked out the emails I had on Firefox and forced me to change my email address. How can I get my emails back from my previous email add

  My previous email was [email protected] For some reason Microsoft outlook have blocked it out and forced me to create another email address. There is a lot of information in the previous emails that I need, how can I get back to them. Microsoft have told me that I cannot reestablish the previous email address. I didn't know they could be so dictatorial.

  * If you are using the '''Microsoft Windows Live''' program;<br>
  Check the account information. On the far left top, under the icon,<br>
  press the box with the arrow. and select '''Options,''' then '''Email Accounts.'''<br>
  Select the e-mail account with one click. On the far right, press '''Properties.'''<br>
  '''General;''' check the information is correct.<br>
  '''Server;''' My Mail Server. Mine is;<br>
  http://mail.services.live.com/DeltaSync_v2.0.0/sync.aspx<br>
  '''Login Name''' and '''Password;''' re-enter the information<br>
  <br>
  * Using a web browser, go to '''Live.com''' and sign in.<br>
  At the top right, look for your name. Just to its left, click the tool icon.<br>
  Select '''Options.''' Under '''Preventing junk email,''' right click on '''Filters and reporting''' and select '''Open New.''' Look thru the settings. If there is something you need help on, just ask. Once you are done, close that page.
  Under '''Preventing junk email,''' right click on '''Safe and blocked senders.'''
  Look thru and check each listing

• 7921 and radius . auto password change?

  we thought about putting in a radius server to handle the wireless phone security in our multi wan enviroment.
  Question .. is there anyway to change the password and not have to revisit all the phones to ener the new password .. in other words, the phones will update themselves ... ?
  Otherwise i do not see the advantage of having a radius server over just a strong key... we are using wpa
  Thanks

  You could use EAP-FAST it will update user passwords automatically.Refer URL
  http://cisco.com/en/US/netsol/ns339/ns395/ns176/ns178/netqa09186a00802030dc.html

• I have an old Apple account that i forgot the password to, but when i try to reset it and get the password changed the email never sends. I do not remember the security questions.  How can i fix this?

  I have sent the email autentication at least 5 times and i have not received any email about the password reset. Is there anyother way i could do this?

  Click here and request assistance.
  (86588)

• How to implement Force password change during authentication

  Description of problem
  Our client requires web applications to support its internal security policy beyond
  normal authentication. This includes:
  - force password change periodically. This should be performed at logon time.
  - maintain password history so that a new password would not repeat any of its
  previous 15 changes.
  We already have an authentication server that satisfy these requirements. However,
  we would also like to base our solution on WebLogic security framework so that
  we can leverage the benefit of the container-managed declarative security (e.g.
  we don't need to use our special cookie to check whether a user is authenticated
  for every web page in the application). So the best scenario for us is to wrap
  up this authentication server using WLS 7.0 authentication SSPI.
  My initial investigation of WLS 7.0 security framework (based on edocs and the
  sample customer security provider codes) convinced me that overall, this is achievable.
  However, I am still left with quite a few questions, which I would like to get
  your help.
  Questions:
  1. (web container) The J2EE-standard container-based authentication is to specify
  <login-config> element. My understanding is that only FORM based authentication
  is applicable. The specified form elements:
  <form method="post" action="j_security_check">
  <INPUT TYPE="TEXT" NAME="j_username">
  <INPUT TYPE= "password" NAME="j_password">
  </form>
  is adequate for authentication. However, if the authentication service provider
  indicates that password change is needed, what would be the most appropriate way
  within WebLogic for the authentication service provider to pass such a flag to
  the web container know so that our application can access it? I guess, a simpler
  question, would be, using the standard <login-config>, webapp knows only about
  authentication fails or succeeds. Can it possibly know more information provided
  by the authentication service provider right after authentication?
  2) If we don't use standard FORM-based authentication, we will code up our own
  authentication control, which could give us a lot more flexibility, but can we
  then bind our Subject obtained through our authentication control to the WebLogic
  Subject that is running the webapp.
  3) (Authentication service provider) Our design is for the custom LoginModule
  to delegate login calls to the authentication server, and throws more refined
  exceptions such as: FailedLoginException, PasswordExpiredException, UserAccountLockedException
  (all subclassed from LoginException). Another approach is to provide detailed
  information such as password expired in callbacks. Either way, when Authentication
  service provider returns, how our web application can access this refined flag
  of authentication result.
  4) Can our customer authentication service provider use DataSource defined in
  a weblogic server? I ask this question because DataSource itself is a protected
  resource of WebLogic. Will referencing it during authentication initiate another
  authentication cycle?
  Can anyone who has experienced similar requirements and worked solutions please
  give me a hint? I appreciate your guidance.
  regards
  Licheng

  "Licheng" == Licheng <[email protected]> writes:
  Licheng> Description of problem
  Licheng> Our client requires web applications to support its internal security policy beyond
  Licheng> normal authentication. This includes:
  Licheng> - force password change periodically. This should be performed at logon time.
  Licheng> - maintain password history so that a new password would not repeat any of its
  Licheng> previous 15 changes.
  Licheng> ..
  Licheng> We already have an authentication server that satisfy these requirements. However,
  Licheng> we would also like to base our solution on WebLogic security framework so that
  Licheng> we can leverage the benefit of the container-managed declarative security (e.g.
  Licheng> we don't need to use our special cookie to check whether a user is authenticated
  Licheng> for every web page in the application). So the best scenario for us is to wrap
  Licheng> up this authentication server using WLS 7.0 authentication SSPI.
  I believe it's impractical to fit the requirement of forcing a password change
  into the standard JAAS interface.
  I think the only practical way to do this is to implement a servlet filter that
  reads the persistent record of the logged-in user to check for a "force change
  password flag". If it finds this, the servlet filter will forward to a page to
  change your password. Note that the servlet filter may be hit again when
  trying to get to the change password page, so it needs to know to not do the
  check in that case.
  If you implement this, I would strongly urge you to softcode the "change
  password" page URL in your system configuration, and not hardcode it in the
  servlet filter.
  ===================================================================
  David M. Karr ; Java/J2EE/XML/Unix/C++
  [email protected] ; SCJP; SCWCD

• ADFS 3.0 and force password change

  I was wondering if anyone knows if ADFS 3.0 supports the AD flag "Force password at first login"?  I know 2.0 does not. I have been integrating Shibboleth with my ADFS and a custom login handler but I would really like to not complicate my
  setup and use straight ADFS if at all possible.  Our ADFS setup would be for a SSO into our on-premise Sharepoint 2010 server. Even if 3.0 returns a error indicating that the password needs changed at least I can then tell the student that and direct
  them to our FIM server to have them register and set their password.  Any thoughts?
  Thanks
  Joe
  Joe M

  Brian,
  I understand that Azure Ad won't store password.  This is all on-premise servers, nothing in Azure.  I see that with ADFS 3.0, if the flag is set to change password at next logon, the user does get a different message than if they just typed a
  wrong password.  I guess what I am looking at doing is instead of them getting the message that their password is expired, redirect them to our FIM server so that they can register for self-service as well as set their new password.  If ADFS 2, the
  returned message was the same whether it was an expired password or a wrong password.  So ADFS 3 is nice in regards to that. Now it is just a matter of trying to take advantage of that.  I thought about maybe creating a relaying party trust to our
  FIM with a claim on that attribute but just not sure how to go about doing that at the moment.
  Joe M

• HT201232 Why is iCloud repeatedly refusing my apple id password and repeatedly forcing me to change it

  I am having problems with my apple id password, mainly in relation to iCloud which has been refusing to accept it. I then find myself being forced to change it. Sometimes I have also received this error message in relation to the iCloud password entry "There is no application set to open the URL mme.setupservice.SetupServiceJS.LearnMoreURL." I have had my apple id refused and had to change it 5 times in the last 24 hours. Any idea why this is happening?  Quite frankly, I would happily manage without iCloud!

  Hi,
  This seems to have fixed itself now. I have no idea how or why it started or got sorted! Part of the problem could have been my inability in the past to remember my apple id password and then having to change it so often as a result that the confusion simply escalated! I have now managed to set up a password that is both secure and easy to remember. I hope that keeps things ticking over! Even now however, the apple id and password is still the only one of the hundreds that I use that ever caused me repeated problems. Until recently my Password Manager couldn't handle the apple id. Fortunately that has been sorted out now. Good luck with your problem.

• I had to set up a new email ID, because I no longer had access to my old email address and Adobe was forcing me to change password, but I could not access the verification email. Now I cannot read my books under my new ID, even though I got Adobe support

  I had to set up a new email ID, because I no longer had access to my old email address and Adobe was forcing me to change password, but I could not access the verification email. Now I cannot read my books under my new ID, even though I got Adobe support to set up my new ID.

  If you are unable to remember your password, security questions, don’t have access to your rescue address or are unable to reset your password for whatever reason, your only option is to contact AppleCare(or Apple ID Support), upon speaking to an operator you should explain that your problem is related to your Apple ID, this way you will not be charged for assistance, even if you don’t have an AppleCare plan.
  The operator will take you through some steps you may have already tried, however they need to be sure they have exhausted all usual approaches before trying to reset your account, so you should try to be helpful and show patience with the procedure.
  The operator will need to verify they are speaking to the account holder and may ask you some questions that only the account holder could know, and you will need to answer them if the process is to proceed.
  Once the operator has verified your identity they will send a message through to your device which contains an alpha numeric code, which you will need to read back to them.
  Once this has been completed they will send an email to your iCloud email address after a period of 24 hours, so you should check that mail is enabled in your devices iCloud settings.
  Upon receipt of the email, use the reset link provided to reset your password, after which you should be able to make the adjustments to iCloud that you wish to do.

• Google is trying to force me to change my password and I don't want to

  Google used to send me warnings 3 or 4 months back... suspicious activity on my google account. I seem to ave been hacked for a very long time, years, in fact. Nobody can tell me what to do. The hackers seem to operate in 'real time' and in some cases, from the same location (ex. a hotel) that I am in. Somebody told me this is called 'shadowing'. (I'm not 'stalked'.) Now google has stopped me logging in and say I MUST change my password. I don't want to, cos I'm sure this move is useless, and I'm also worried that the change WILL NOT open my email anyway. I'm afraid of that, cos it could be hackers who are impersonating google. I experienced heavy hacking event several years ago, the techie almost couldn't save my inbox; he couldn't believe it himself. (Massive instability and login problems. He finally managed to stabilize after about 90 mins.) The hackers are quite sophisticated. I often used to get a message from google when signing out, saying that 'other people are logged onto this site and closing down now could cause them to lose data.' Recently I get a very quick flashed message when shutting down; it seemed to come from google (chrome?) downloads and it shows a liitle man cartoon figure falling, and it says, 'He's dead, Jim', and hints that my google drive is out of space, or similar. It only lasts a second or less. Is that normal? I checked much on google troubleshooting, no use!

  I don't know if there's anything you can do to avoid changing your google password if google wants you to. Do the password reset options come up on the web, or are sent to your recovery email? The "He's dead Jim" icon isn't normal unless you are out of google drive space. Depending on your usage.. Most people don't use that much of their 15 gigs.
  Also some things you could do:
  -Scan your computer for Malware (I'm sure you've done this multiple times but the more the merrier. I use [https://www.malwarebytes.org/ Malwarebytes] .
  -Remove cookies (Just in case thats the way they are getting your password, even though it sounds like they have a different way)
  You could also check out this [https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=3&cad=rja&uact=8&ved=0CDIQFjAC&url=http%3A%2F%2Fwww.thewindowsclub.com%2Fgoogle-account-is-hacked&ei=oWsNVY2SKJL3yQTd34GYBw&usg=AFQjCNGEZ3_Amg09EF7ndMICZaaQhRv2uw&sig2=EDUlhIt8zTp3DTBcj3AW4g&bvm=bv.88528373,d.aWw article] on what to do if your google account is hacked.
  Have a great day!!
  Jon

• Solaris 10 - ldap client - tls/ssl - password change

  we have configured solaris 10 as a ldap client to sun directory server 6.3.1, on enabling tls:simple, password change operation is just failing with following error message.
  passwd -r user1
  passwd: Changing password for user1
  passwd: Sorry, wrong passwd
  Permission denied
  where user1 is just in ldap and not in unix local. this function works if the authentication mechanism is just simple, but on enabling tls:simple, we get the error message.
  any ideas will be highly appreciated.

  Not that it helps any but I am getting his same error. I am also using 6.3.1

• Forcing Password Changes

  I've got some scenarios I've been asked to research regarding expiring passwords and preventing account lockouts. We are on Windows 7.
  If a user is logged in while their password expires, is it possible to force a prompt to have them change their password before they log out.
  If a user's screen is locked while their password expires, is it possible to set a password change prompt when they attempt to unlock?
  I guess the theme is how can password changes be forced before a user can get locked out after password expiration???
  Thanks,
  Matt

  The only thing you can change is the notification about how many days it is before the password expires.
  http://technet.microsoft.com/en-us/library/ee829687(v=ws.10).aspx

• ATTENTION!! RECEIVED FRAUDULENT EMAIL PRETENDING TO BE APPLE!! I received an email informing of a purchase made on my account and telling me to change my password if did not purchase the item, which I had not. I have received valid emails from Apple

  ATTENTION!! RECEIVED FRAUDULENT EMAIL PRETENDING TO BE APPLE!! I received an email informing of a purchase made on my account and telling me to change my password if did not purchase the item, which I had not. I have received valid emails from Apple in the past asking letting me know a purchase had been made and asking if I had made the purchase, but the item listed has alway been a purchase that I had made. Since I had received similar emails in the past, I didn't think anything of it. Because I had not purchased the item listed, I immediately clicked on the link in order to change my password, which has been suggested in authentic emails i had received from Apple in the past. The site I was redirected to was exactly the same as the Apple site where you go to change your password. I entered my userID and password and it stated a verification email would be sent, if it was not sent click "resend email." When I did not receive an email, after about 10 seconds I went to the Apple site and followed the SAME EXACT step on pages that were IDENTICAL to the FRAUDULENT website I apparently had just been at. When I clicked "Send verification email," I DID receive an email within seconds, which had a special link that brought me to a page where I could change my password, which I did. I later compared a legitimate email to the FRAUDULENT email and I DID FIND A DIFFERENCE, BUT IT WAS ALMOST UNNOTICEABLE unless you were really, really looking.  I doubt it would be noticed by anyone if not comparing it closely to a real email. THE DIFFERENCE WAS AT THE BOTTOM OF THE AUTHENTIC EMAIL, THERE WERE THREE LINKS THAT COULD BE SELECTED - My Apple ID/Support/Privacy Policy. ON THE FRAUDULENT EMAIL THESE LINKS WERE NOT PRESENT!!! Just today I received an email from Apple stating my password had been changed today. I did not change my password today. When I changed after getting the fake email, I did not think about my SECURITY QUESTIONS!!! If you forget your Apple password, you are able to answer the security questions in place of your ID and you get a confirmation email. Even though I changed my password within a one minute when I did not get a confirmation email with a link to change my password right away and I went dierctly to Apple's site, apparently it was enough time to take all the information on my account - INCLUDING MY DEBIT CARD NUMBER, WHICH HAD BEEN REQUIRED WHEN I INITIALLY SET UP THE ACCOUNT!!! Today I received a call from VISA FRAUD PROTECTION asking about strange activity on my account and stating they were concerned and wanted to ensure I had used the account. I HAD NOT, AND ALL THE MONEY IN MY BANK ACCOUNT HAD BEEN STOLEN!!!!! I am writing this in hopes that many people will see it and NOT FALL VICTIM TO THIS SCAM. Please pay close attention to any emails you supposedly receive from Apple - If the links "MY APPLE ID/SUPPORT/PRIVACY POLICY," PLEASE DO NOT ASSUME IT IS AN AUTHENTIC EMAIL FROM APPLE. I suggest you immediately forward the email to apple, which I didn't do because this happened days ago. Nothing was taken from my money that was already on the Apple account, and nothing had been taken from my checking account. I guess I assumed there had been something wrong with the link in the email directing me to where I could change my password, plus I had gone to the valid Apple website and changed my password for real, and I guess I was thinking that changing my password would prevent someone from being able to acces my account info. PLEASE DO NOT FALL VICTIM TO THIS SCAM AS I DID!!!!

  No need for alarm. There are several folks a day posting like threads. Most folks know these phishing attempts for what they are and merely delete with prejudice.
  To the bottom line... if you wish - and I am sure Apple will take notice - you should FORWARD the email to [email protected] and delete.
  CCC

• I have a new email address and was successful in changing that information on line but my phone and iPad does not recognize the new address and I cannot update anything. It also does not accept the password associated with the old email address/Apple ID

  I have a new email address and was successful in changing the information online but cannot change it on my iPhone 4S or iPad. When I try to fix the problem it requires me to create a new password and now I can't remember that either.

  To change the iCloud ID you have to go to Settings>iCloud, tap Delete Account, provide the password for the old ID when prompted to turn off Find My iDevice, then sign back in with the ID you wish to use.  When you do this you may find that the password for your old ID isn't accepted.  If this should happen, and if your old ID is an earlier version of your current ID, you need to temporarily recreate your old ID by going to https://appleid.apple.com, click Manage my Apple ID and sign in with your current iCloud ID.  Click edit next to the primary email account, change it back to your old email address and save the change.  Then edit the name of the account to change it back to your old email address.  You can now use your current password to turn off Find My iDevice on your device, even though it prompts you for the password for your old account ID. Then save any photo stream photos that you wish to keep to your camera roll.  When finished go to Settings>iCloud, tap Delete Account and choose Delete from My iDevice when prompted (your iCloud data will still be in iCloud).  Next, go back to https://appleid.apple.com and change your primary email address and iCloud ID name back to the way it was.  Now you can go to Settings>iCloud and sign in with your current iCloud ID and password.

• Apple changed my Apple ID to the email address associated with my iTunes account. I now can no longer access my account because the old user name is no longer valid and has no password. I have been on the phone with tech support for hours trying to fix.

  Apple changed my Apple ID to the email address associated with my iTunes account. I now can no longer access my account because the old user name is no longer valid and has no password. I have been on the phone with tech support for hours trying to fix this. I can not update any of the apps associated with that user name.

  Is this itunes on the iPad or on my computer? Thank you for the reply.