Due to the normally lowercase enforcement of uids, FreeIPA can't properly set the password for a user who was imported via a WinSync agreement. The code tries to search for a lowercase user.name@EXAMPLE.COM and yields none resulting in:
ipa passwd First.Last New Password: Enter New Password again to verify: Not Found
After some investigation this is due to the krbPrincipalName attribute having mixed-case but we are searching on a lower-case value.
By convention we make uid all lower case so all krbPrincipalName we create are lower@UPPER. We need to modify ipa-winsync.c to create lower-case principals.
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=824490
attachment freeipa-rcrit-1022-winsync.patch
master: 7429342
Rename component.
Metadata Update from @jraquino: - Issue assigned to rcritten - Issue set to the milestone: FreeIPA 3.0 Core Effort - 2012/05
Login to comment on this ticket.