Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line
101102103104105106107108109110
Note: To set a user account’s password type to Open Directory, you must have
administrator rights for Open Directory authentication in the directory domain that
contains the user account. This means you must authenticate as a directory domain
administrator whose password type is Open Directory. For more information, see
Assigning Administrator Rights for Open Directory Authentication on page 11 5 .
To specify that a user account have an Open Directory password:
1 Make sure the users account resides in a directory domain that supports Open
Directory authentication.
The directory domains that support Open Directory authentication are listed earlier in
this topic.
2 In Workgroup Manager, open the account you want to work with (if it is not open).
To open an account, click the Accounts button, then click the Users button. Click the
small globe icon above the list of users and choose from the pop-up menu to open
the directory domain where the users account resides.
Click the lock and authenticate as a directory domain administrator whose password
type is Open Directory, then select the user in the list.
3 Click Advanced.
4 From the User Password Type pop-up menu, choose Open Directory.
5 When prompted, enter and verify a new password, then click Ok.
The password must contain no more than 512 bytes (512 characters or fewer,
depending on the language), although the network authentication protocol can
impose dierent limits (for example, 128 characters for NTLMv2 and NTLM and 14 for
LAN Manager). “Composing a Password on page 105 provides guidelines for choosing
passwords.
6 In the Advanced pane, click Options to set up the users password policy, and click OK
after you nish specifying options.
If you select “Disable login: on specic date,” use the up and down arrows to set the date.
If you select an option that requires resetting (changing) the password, remember that
not all protocols support changing passwords. For example, users can’t change their
passwords when authenticating for IMAP mail service.
The password ID is a unique 128-bit number assigned when the password is created
in the Open Directory Password Server database. It can be helpful for troubleshooting,
because it appears in the Password Server log when a problem occurs. For more
information, see Viewing Open Directory Status and Logs on page 181. View this
Open Directory log in Server Admin.
7 Click Save.
108 Chapter 6 Managing User Authentication Using Workgroup Manager