We just implemented a stricter password policy for our staff. We set
it to expire their password on login if their current password did not
meet the new criteria. When the user goes to enter their new password
and the new password still doesn't meet the new criteria then the user
is logged into the network and the password is not changed. However,
the user thinks that it has been changed because it lets them in.
On the client side we are using the 4.91 sp4 client on Windows XP and
on the server side we are running Netware 6.5 SP6, EDIR 8.8.2 and
Security Services 2.0.4. What I'm wondering is if there is a way to
tell the user that their new password is invalid and then have them
try again to change their password again. Is this possible or not?
Is it a bug? Any information would be great.