-
Bug
-
Resolution: Fixed
-
Low
-
2.2
-
None
DelegatedAuthenticationDirectory.updateUserCredential allows the update of the internal user's password.
This update has no effect because the user's credentials cannot be updated on the directory. This should throw an OperationFailedException("Passwords are stored in LDAP and are read-only for delegated authentication directory").
- relates to
-
CWD-2977 LDAP Delegated Authentication directories should not require a User Password Attribute
- Closed
-
JRASERVER-7140 "Change password" facility modify only a password in a local database, not in LDAP.
- Closed