[LON-CAPA-admin] [was LON-CAPA-users] mass resetting internal aauth passwords

Lars Jensen jensen at physics.unr.edu
Fri Sep 15 05:15:11 EDT 2006 

Hi Jim,

Jim Maxka wrote:
> While this topic is open, maybe someone can help me with this 
> hypothetical situation -- which has never happened as far as I know.
> 
> We use ldap authentication and so there should not be internal passwords 
> in the loncapa system for the students.  What happens if a student 
> changes the password in Change Preferences.  Does this become the 
> student's internal password?  

If LDAP allows password change, then it becomes the student's new LDAP 
password.

Lars.

> If this were to happen and the student 
> forgot the password, would this have to be reset to local authentication?
> 
> Just wondering -- Jim
> 
> Lars Jensen wrote:
>> Hi Gerd and Ray,
>>
>> What's really needed is a service by which students can enter a 
>> registered email address and get a new password, so instructors/DC's 
>> doesn't have to be involved. I realize tha tnot all students 
>> necessarily have a registered email with lon-capa, but whenever it 
>> exists, it ought to be possible to get a new password via email.
>>
>> Lars.
>>
>> Gerd Kortemeyer wrote:
>>> Hi,
>>>
>>>
>>>> On Thu, 14 Sep 2006, Ray Batchelor wrote:
>>>>>
>>>>>     How can one quickly reset the passwords for a bunch of internally
>>>>> authenticated students in a hosted course??  Course coordinators 
>>>>> can't reset
>>>>> passwords, it seems to me.
>>>
>>>
>>> On Sep 14, 2006, at 8:05 PM, lucasm at ohiou.edu wrote:
>>>
>>>>
>>>> Have fun, Ray. This is a domain coordinator only ability as far as I 
>>>> know.
>>>
>>> Yep. At some point, I would like to add the functionality that if a 
>>> domain coordinator impersonates a course coordinator, they can upload 
>>> class lists and overwrite the password. I have spend longer than I 
>>> care to admit resetting passwords one-by-one by hand.
>>>
>>>> I have considered writing a script to do this, but I'm not sure this 
>>>> is sanctioned behavior for root!
>>>
>>> A script is the way to go for now, I think. The file is
>>>
>>> /home/httpd/lonUsers/(your_domain)/(first)/(second)/(third)/(username)/password 
>>>
>>>
>>> for example
>>>
>>> /home/httpd/lonUsers/msu/k/o/r/kortemey/password
>>>
>>> For internally authenticated, it looks like this:
>>>
>>> internal:3XbDe45Bh
>>>
>>> where the latter is the encrypted password.
>>>
>>> Reset one password by hand, and copy that file to the rest of the 
>>> users. Somebody probably already has a script like that ...
>>>
>>> BTW, the reason that course coordinators cannot do this is that the 
>>> confusion would be great if a kid is already in some courses, and 
>>> then their password gets messed up because they were added to another 
>>> course. We didn't want passwords to bounce around like that at the 
>>> discretion of just any course coordinator.
>>>
>>> - Gerd.
>>> _______________________________________________
>>> LON-CAPA-admin mailing list
>>> LON-CAPA-admin at mail.lon-capa.org
>>> http://mail.lon-capa.org/mailman/listinfo/lon-capa-admin
>> _______________________________________________
>> LON-CAPA-admin mailing list
>> LON-CAPA-admin at mail.lon-capa.org
>> http://mail.lon-capa.org/mailman/listinfo/lon-capa-admin
> 
> _______________________________________________
> LON-CAPA-admin mailing list
> LON-CAPA-admin at mail.lon-capa.org
> http://mail.lon-capa.org/mailman/listinfo/lon-capa-admin

More information about the LON-CAPA-admin mailing list