Idea Details

Feature request for CA Directory DXGRID to suport RFC 3062

Last activity 06-13-2019 09:29 AM
Anon Anon's profile image
03-04-2015 11:53 PM

Requesting support for RFC-3062 https://www.ietf.org/rfc/rfc3062.txt for use with the CA Directory DXGRID SP14 product.  Full RFC attached.

 

This RFC addresses:

Password Modify Request and Response

 

  The Password Modify operation is an LDAPv3 Extended Operation

  [RFC2251, Section 4.12] and is identified by the OBJECT IDENTIFIER

  passwdModifyOID. This section details the syntax of the protocol

  request and response.

 

  passwdModifyOID OBJECT IDENTIFIER ::= 1.3.6.1.4.1.4203.1.11.1

 

  PasswdModifyRequestValue ::= SEQUENCE {

  userIdentity [0] OCTET STRING OPTIONAL

  oldPasswd [1] OCTET STRING OPTIONAL

  newPasswd [2] OCTET STRING OPTIONAL }

 

  PasswdModifyResponseValue ::= SEQUENCE {

  genPasswd [0] OCTET STRING OPTIONAL }


Comments

03-10-2017 03:19 PM

This idea was released as part of r12 SP17 so updating the state to reflect that this was Delivered.

05-12-2015 03:26 PM

Thank you

 

Regards,

 

Mike McLaughlin

05-12-2015 03:23 PM

Thanks for submitting the idea! The team is progressing in the impact analysis and sizing of potentially adding support for this RFC. We expect to provide additional update within a month.

Ehud

03-24-2015 07:02 PM

Perfect thanks!

03-24-2015 08:41 AM

Hey Justin, both the DN and password would be supplied with the request via the zimbra mail application by way of our account provisioning system.  Hope that this helps.

 

Regards,

 

Mike McLaughlin

Sr. Messaging Infrastructure Engineering

Comcast

1701 JFK Blvd,

Philadelphia PA 19103

Office: 215-286-1775

03-23-2015 11:07 PM

Hi Mike,

We are in the process of analysing and spec'ing out this requirement.

A couple of questions regarding the intended use of this extended operation:

* Will the "userIdentity" contain the LDAP DN of the entry? (I understand if this is left blank the DN of user that created the connection will be used)

* For the generated password, do you just require a configurable length random generated password containing [a-zA-Z1-9]?

Cheers,

Justin