Server Enforcing Different Password Rules than Set in Exchange Management Console

Similar Messages

• Setting EX2007 mailbox permissions with Exchange Management Shell not reflected in Exchange Management Console

  Hello,
  I'm trying to use PowerShell to script some mailbox permissions.  The mailbox permissions I set in the shell are not displaying in the EMC.  The command I'm using is:
  add-MailboxPermission -accessrights fullaccess -identity $username -user MYDOMAIN\$supervisor -confirm:$false
  I get confirmation from the shell:
  Identity             User                 AccessRights                                               
  IsInherited Deny
  MyDomain.net/Separa... MYDOMAIN\mysupervisor    {FullAccess}                                               
  False       False
  Afterwards, when I look in the Exchange Management Console for this user (Right click, Manage Full Access), even after allowing time for replication, I don't see this new permission reflected there.  But If I use Get-MailboxPermission
  $username, the permissions show up:
  Identity             User                 AccessRights                                               
  IsInherited Deny
  MyDomain.net/Separa... MYDOMAIN\mysupervisor    {FullAccess}                                               
  False       False
  Why is this addition not being reflected in the shell?

  Hi,
  The cmdlet you use to grant full access permission is right. If your case, please let "mysupervisor" access to this user's mailbox and verify if he/she can access it. Maybe Exchange Management Console has not been updated well.
  Hope this can be helpful to you.
  Best regards,
  Amy Wang
  TechNet Community Support

• Root password fails on auth to Solaris Management Console Server

  I've setup Solaris 10 x86 on a VA linux 1220 server, all is good so far except when I try to create additional users. I am logged in as root, and the root password logs in to the CDE, but fails on authentication to Solaris Management Console Server when I try to use any of the management apps like computers and networks or Users. So I'm stalled at the point where I should be configuring the system. I have been very careful about typing in the password exactly as I use it in the login screen, but it never works in the System Management tools for This Computer. The password I'm using is 26 characters long, is it too long? Or is there a step I'm missing?
  Thanks,
  Brian

  One of my famous guesses, but unless you changed the default password algorithm the maximum length of your password is 8 characters, when logging in on the console or desktop, anything typed after those eight characters will be ignored (unless this behaviour changed very recently).
  Its possibly that SMC, and its server component WBEM does not ignore the extra characters, which could cause this behavior.
  What happens if you try and login to SMC with the root user and only the first eight characters of your password?
  Btw, if this was the problem i think there is a way to change the default crypto algorithm to something that supports more characters.
  .7/M.

• Completely different objects in Exchange management consoles 2010 and 2013

  HI scripting guys,
  First, apologies for the non-specific title. This is not the first incompatibility I am finding (e.g. scripts perfectly working in exchange console 2010 do not work in 2013).  
  Here is my current problem. I spent a good amount of time, but shame on me could not solve it.
  I run the following line:
  Get-MailboxPermission $mailbox |select @{Name="Access";Expression={([string]::join(',', $_.AccessRights))}}
  and get what I want in EMC 2010:
  Access
  FullAccess, SendAs, ReadPermission
  FullAccess, DeleteItem
  FullAccess, DeleteItem
  However in EMC 2013 I get the following instead:
  Access
  System.Collections.ArrayList
  System.Collections.ArrayList
  System.Collections.ArrayList
  Which is a clear sign that at some point the objects are different. 
  Edit: Just before sending this, I added out-string this way:
  Get-MailboxPermission $mailbox |select @{Name="Access";Expression={([string]::join(',', ($_.AccessRights|out-string)))}}
  which made the script to work in both consoles but introducing the nasty ellipsis:
  Access
  FullAccess, SendAs, ReadPermission...
  FullAccess, DeleteItem...
  FullAccess, DeleteItem...
  Piping the above to "format-table -wrap -autosize" is not a solution. It helps with the ellipsis but introduces blank lines:
  Access
  FullAccess, SendAs, ReadPermission
  FullAccess, DeleteItem
  FullAccess, DeleteItem
  I would greatly appreciate if you can help me with this !
  Thank you !

  one day later, mission accomplished.
  joining strings is not necessary and should be removed in that line in ems 2013 because each "row" is a single string. In contrast in ems 2010 the permissions for each user are an array of strings which need to be joined first in order to user
  "replace" further.  For example in ems 2013 my actual line now looks like this:
  Get-MailboxPermission $mailbox |Select @{Name="User";Expression={$_.User.tostring().replace("UVIC\","")}},@{Name="Access";Expression={$_.AccessRights.replace("Full","Full ").replace("Delete","Delete
  ")}}| sort user| format-table -auto
  and the output looks for example like this:
  Access
  Full Access, Delete Item
  Full Access
  Full Access
  Which is what I wanted to accomplish in the first place.
  =============================================
  Now since I could not find ANYTHING online about incompatibilities between Exchange management shell  2010 and Exchange management shell 2013 , let me share one more:
  it is about "send on behalf" permissions:
  after:
  $MBox = Get-Mailbox $MailboxName
  $SoB=$Mbox.grantsendonbehalfto
  things get different to list the users who has Send on behalf permissions for EMS 2013 and EMS 2010
  in 2010:
  foreach($S in $SoB){$S.name}
  while in 2013:
  foreach($S in $SoB){$S}
  again in EMS 2013 the things are simpler - $S is just a string

• How do you enforce specific password syntax rules?

  Hi Guys,
  I'm setting up iPlanet Directory Server 5.1.3 and I need to configure it to enforce a password rule which says that you must have at least one letter and one number in your password. I've searched the documentation and googled the heck out of it, but I can't seem to find any reference as to how to do that. Does anybody have any info on if this is possible and where I might look for some info on how to do it?
  Thanks,
  Mike

  Thanks gary, excelent find, ive just installed it on solaris 10.
  heres what happened when i tried to use a password
  test
  then tester
  then tester1
  $ passwd
  passwd: Changing password for admin
  Enter existing login password:
  New Password:
  passwd: Password too short - must be at least 6 characters.
  Please try again
  New Password:
  passwd: The password must contain at least 1 numeric or special character(s).
  Please try again
  New Password:
  Re-enter new Password:
  Your new password was rejected for the following reason:
  it is based on a dictionary word
  Permission denied
  to build get hold of pam_cracklib.tar.gz, from sourceforge and
  cracklib,2.7.tar.gz
  first cracklib, change the DICTPATH in the Makefile for
  /usr/dict/pw_dict
  do
  CC=/opt/sfw/bin/gcc; export CC
  and in the utils directory change the make file so all the cc's are gcc
  then
  make all
  now cd cracklib and cp libcrack.a /usr/lib and packer.h to /usr/include
  cd to the utils directory and copy all the binaries to /usr/bin
  cp mkdict testlib testnum teststr unpacker /usr/bin
  now move on to the pam part
  unpack and cd to pam_cracklib
  edit the GNUmakefile as follows or use this GNUmakefile
  # !!! Hello !!!
  # Make sure you are using GNU Make, and not some cheap imitation.
  # !!! Thank you !!!
  OS=$(shell uname)
  ARCH=$(shell uname -p)
  CRACKLIB_TARGET=pam_cracklib.so
  DESTDIR=/usr/lib/security
  PERMS=0700
  PASSWORD_SRCS=pam_password.c
  COMMON_SRCS=pam_module.c logging.c util.c
  CRACKLIB_SRCS=cracklib.c $(COMMON_SRCS) $(PASSWORD_SRCS)
  CRACKLIB_OBJS=$(CRACKLIB_SRCS:.c=.o)
  DICTPATH="/usr/dict/pw_dict"
  INCL=
  LIBS=-lpam
  CRACK_LIBS=-lcrack
  CC=gcc
  CFLAGS=-g -Wall -fPIC -D$(OS) -D$(ARCH)
  LD=ld
  ifeq ($(OS),SunOS)
  LDFLAGS=-G -z redlocsym -L/usr/lib -R/usr/lib
  else
  LDFLAGS=-x --shared -L/usr/lib -R/usr/lib<br />
  endif
  RM=rm
  FORCE_REBUILD=
  password: $(CRACKLIB_TARGET)
  # We will use this when cproto(1) stops sucking
  # %.h : %.c $(FORCE_REBUILD) # A ".o" file depends on the corresponding ".c" fil
  e
  # cproto -E 0 $<
  %.o : %.c $(FORCE_REBUILD) # A ".o" file depends on the corresponding ".c" file
  $(CC) $(INCL) $(CFLAGS) -c $< -o $@
  % : %.o # override default linking rule just in case
  @echo
  @echo $@ is not a valid target
  @echo
  $(CRACKLIB_TARGET) : CFLAGS += -DMODULE_NAME=\"$(CRACKLIB_TARGET)\" -DCRACKLIB_
  DICTPATH=\"$(DICTPATH)\"
  $(CRACKLIB_TARGET) : $(FORCE_REBUILD) $(CRACKLIB_OBJS)
  $(LD) $(LDFLAGS) -o $@ $(CRACKLIB_OBJS) $(LIBS) $(CRACK_LIBS)
  @echo
  @echo $@ built successfully!
  @echo
  # Need -O so the inline "stat()" gets compiled, grr
  $(DESTDIR)/$(CRACKLIB_TARGET) : $(CRACKLIB_TARGET)
  @echo installing...
  test -d $(DESTDIR) || mkdir -p $(DESTDIR)
  cp $(CRACKLIB_TARGET) $(DESTDIR)
  chown root $(DESTDIR)/$(CRACKLIB_TARGET)
  chgrp root $(DESTDIR)/$(CRACKLIB_TARGET)
  chmod $(PERMS) $(DESTDIR)/$(CRACKLIB_TARGET)
  $(FORCE_REBUILD):
  @echo rebuilding...
  install: $(DESTDIR)/$(CRACKLIB_TARGET)
  rebuild:
  $(MAKE) $(MOREMAKEFLAGS) "FORCE_REBUILD=REBUILD"
  clean:
  $(RM) -f $(CRACKLIB_TARGET)
  $(RM) -f $(CRACKLIB_OBJS)
  $(RM) -f #*
  $(RM) -f *~
  now run gmake
  and gmake install
  edit /etc/pam.conf as follows
  95 #
  96 other password required pam_dhkeys.so.1
  97 other password requisite pam_authtok_get.so.1
  98 other password requisite pam_cracklib.so
  99 other password requisite pam_authtok_check.so.1
  100 other password required pam_authtok_store.so.1
  101 #
  102 # Support for Kerberos V5 authentication and example configurations can
  103 # be found in the pam_krb5(5) man page under the "EXAMPLES" section.
  104 #
  this is adding line 98 and save the file
  thats it
  regards peter

• How can I configure an outgoing server that has a different password than the rest of my email account?

  I have a work email account where the password for my incoming server is different than the password for my outgoing server. I cannot find how to change this in the outgoing server settings on thunderbird. Any help would be very appreciated!

  Try to add another SMTP server using correct password then tell the mail account to use that smtp server.
  * Tools > Account settings > Outgoing Server (SMTP)
  * click on 'Add'
  * enter a Description so you can easily tell which server this is.
  * enter server details.
  * userbame = full email address
  * password = correct smtp password.
  * click on OK
  Then tell your mail account to use that smtp server.
  * select the mail account name in left column
  * bottom right section 'Outgoing server (SMTP)
  * click on drop down and select the smtp server you just added.
  * click on OK to save changes to Account Settings.
  Note: Account Settings can be located via various methods:
  Menu Bar
  * Tools > Account settings
  Mail Toolbar:
  * menu icon > Options > Account Settings
  FolderPane:
  * right click on mail account and select 'Settings'

• I am trying to set my imessage, but when i switch to on it asks for a password with a different apple id than my original

  i am trying to set my imessage, but when i switch to on it asks for a password with a different apple id than my original

  Sign out of that Apple ID, then sign in with the correct one.
  Go to Settings > FaceTime, tap your Apple ID, and select Sign Out.
  Go to Settings > Messages > Send & Receive, tap your Apple ID, and select Sign Out.
  http://support.apple.com/kb/ts4268

• Development and Quality server using different screen color setting

  Hi,
  I want to differentiate the Development and Quality server using different screen colors,
  How can I set different color logon screen for the different kinds of servers.
  Thank You.
  Best Regards,
  M.Thirumoorthi
  [email protected]

  Hi Thiru moothi,
  Please check these links :
  https://www.sdn.sap.com/irj/sdn/wiki?path=/display/ep/modifyingtheLogon+Page&
  Custom Password Change Page
  Custom Portal Logon Page
  Reward points if handy!
  Cheers,
  Sandeep
  Edited by: Sandeep Tudumu on Mar 26, 2008 7:41 PM

• Can i lock an app on my iPhone with a different password than the one i use to lock my phone?

  can i lock an app on my iPhone with a different password than the one i use to lock my phone?

  This should work; one of my e-mail accounts is my own domain through Gmail.  Make sure your username is set to your full e-mail address (like [email protected]) rather than just your username.
  Did you set it up on your iPhone as an IMAP account, or as a Gmail account?  It should work perfectly using the Gmail setting.  It can work as IMAP, but you need to jump through a few hoops to get there.

• Another "This itunes account is set up to use family sharing with a different icloud account than Apple ID "

  I saw another thread on the matter but thought I would post because the circumstances are different. Here is how it happened.
  I have had an Apple Store account for years and until recently our family has only had our one Mac and my iPhone 4. Thus any purchases we have made on the Apple App Store were made only with this account.
  We recently purchased two iPhone 5S's--one for my wife and one for my daughter. Neither had Apple IDs so first we set up my wife's iPhone and created an Apple ID for her. Next we used the Family Sharing feature to set up an account for our "under age 13" daughter.
  Because I am still waiting for my iPhone 6 Plus to arrive, and because the iPhone 4 cannot upgrade to iOS 8, and because my Apple ID is the only account with any apps that have been purchased in prior years, I set up my wife as the Family Organizer but when I set up her account, I chose the option to "share purchases from a different account" and entered the information for my Apple ID.
  My daughter is able to view my prior purchases on her iPhone, but when my wife tries to view my prior purchases, she receives the message "This iTunes account is set up to use Family Sharing with a different iCloud account than <her Apple ID>."
  I hope Apple is reading this. I would be more than willing to help them on this one as this feature is one of the main reasons I put our family on iPhones.

  I had this problem. I finally figured it out yesterday. Try this:
  On the device that is having trouble seeing purchases, go to Settings>iCloud>Family Sharing> Then tap on the user of the device you are on. Under "Family Purchases" make sure it has the AppleID of the person for that device. Mine originally had my husbands AppleID in there (he is the Organizer), but I changed it to mine. That doesn't make it so that the purchases are under me. The purchases remained under my husband, but my ID had to be in this spot for it to work.
  After that, I closed settings, then I went to Settings>iTunes and App Store> click on the AppleID and Sign Out, even if it has the right AppleID in there. Then Sign In again using the AppleID of the person on that device. Again-- even if it has the right ID in there to start, still sign out and back in.
  See if they show up. If they don't show up still, try doing a restart (hold down power button and home button until it restarts).
  They should show up by then, but if they don't, at that point, try to go into iCloud and Sign Out and back in.
  I think the key is having the right ID in "Family Purchases". I hope this works for you.

• My Apple TV was set up with a different Apple ID than I have for my ITunes Account.  In other words I have multiple Apple ID's.  How can get these accounts to sync up?

  My Apple TV was set up with a different Apple ID than I have for my ITunes Account.  In other words I have multiple Apple ID's.  How can get these accounts to sync up?

  If you wish to use home sharing then you need to setup the Apple TV under your ID.

• Is there a way to change the color of the Bezier Curves and points to a different color other than black  I find it perplexing while setting points and curves working on a photo that needs to be separated from it's background for placement on transparent

  Is there a way to change the color of the Bezier Curves and points to a different color other than black  I find it perplexing while setting points and curves working on a photo that needs to be separated from it's background for placement on transparent backgrounds. Any thoughts?

  Yes. Well, sort of: instead of a "path", set the pen tool to "shape" in the tool properties. Then set the fill colour to transparent, and the stroke colour to the colour you want. You can also set the stroke width.
  Not perfect, but at least you can see the path more clearly - the anchor points and handles still remain the default colour. Open the path panel, and right-mouse click the path shape to create a selection based on that shape. The Paths panel menu also allows you to create work paths based on that shape.
  Unfortunately when you try to move the handles the black thin outline appears again until you release the mouse button.
  This is one of several things that works better in Photoline: in Photoline, once the path is set to a specific colour, editing the path uses the actual colour and stroke width. which is extremely handy for creating path based selection with awkward background colours and/or a high resolution screen. In Photoline the handles and bezier points are also much, much larger, which makes it rather simpler to work with as well - especially on a higher resolution screen. And when selected the handles and points are a clear red with a black outline - again easier to spot and identify. I just works better, in my opinion.

• Certain apple products (iTunes) require a different password than my apple id password.  Why - and can I make them all the same?

  certain apple products (iTunes) require a different password than my apple id password.  Why? … and can I make them all the same password?

  I assume you never got a solution. My own painful story is here:
  http://tech.kateva.org/2012/06/icloud-transition-went-as-expected.html
  I've given up on Lion/iCloud. I'll try Mountain Lion.

• Can I set up a calendar with a different password to my Mobileme account?

  Hi Everyone,
  I am using iCal Version 3.0.8 (1287)
  I need to set up a new calendar on my iCal which a 3rd party can publish events to.
  Problem is, I don't want to give this person my MobileMe password.
  Is there a way to set up a new calendar with a different password?
  Any help would be appreciated.
  Thanks.

  Okay, I found a solution and it works. FYI for anyone else with the same issue:
  http://www.macosxhints.com/article.php?story=20060614115754569

• Java and ABAP system, setting new password rules

  Hello,
  we have a ecc 6.0 and in front for the users we have a portal based on netweaver 7.0. Our security colleagues told us, to change the password rules based on our new security book. the portal is getting the users via ume and the datasource is the abap system (ecc 6.0). All users accessing the form the portal to the backend system are communication users. my question now. there are two possiblities to change password rules settings. one in the java system and the other on the abap system. where should be implement the password rules? would the changes on the abap system also affect the java system?
  regards,
  alexander tuerk

  > we have a ecc 6.0 and in front for the users we have a portal based on netweaver 7.0. Our security colleagues told us, to change the password rules based on our new security book. the portal is getting the users via ume and the datasource is the abap system (ecc 6.0).
  For password rules please check the documentation: [Logon and Password Security in the SAP System|http://help.sap.com/saphelp_nw04/helpdata/en/52/6717ed439b11d1896f0000e8322d00/content.htm]
  [Profile Parameters for Logon and Password (Login Parameters)|http://help.sap.com/saphelp_nw04/helpdata/en/32/20709747d649e8bc74e084d0b2432c/frameset.htm]
  and the SAP Note: [Note 862989 - New password rules as of SAP NetWeaver 2004s (NW ABAP 7.0)|https://service.sap.com/sap/support/notes/862989]
  [2467 - Password rules and preventing incorrect logons|https://service.sap.com/~form/handler?_APP=01100107900000000342&_EVENT=REDIR&_NNUM=0000002467&nlang=E]
  All users accessing the form the portal to the backend system are communication users. my question now. there are two possiblities to change password rules settings. one in the java system and the other on the abap system. where should be implement the password rules? would the changes on the abap system also affect the java system?
  Please go through the following Link: [Users and Passwords for AS JAVA|http://help.sap.com/saphelp_nw04/helpdata/en/3d/addc3ed98f7650e10000000a114084/content.htm]
  Regards,
  Dipanjan