samba - Feb 2017 - Users list and the date the password will expire

Yes, but if the password never expires, I don't need to include it in 
the check the script performs.

Ole


On 14.02.2017 12:29, Rowland Penny via samba wrote:
> On Tue, 14 Feb 2017 11:29:39 +0100
> Ole Traupe via samba <samba at lists.samba.org> wrote:
>
>> I see. This is the same with 512 and 514, I think.
>>
> An enabled user account is 512, if you add 2 to it, you get 514, but if
> you set the users account to never expire you get '66048' if the
> account is enabled and '66050' if it is disabled.
>
> Rowland
>
>

On Tue, 14 Feb 2017 13:07:17 +0100
Ole Traupe via samba <samba at lists.samba.org> wrote:
> Yes, but if the password never expires, I don't need to include it in 
> the check the script performs.
> 
Yes and doing it my way ensures the user will get excluded.

Rowland

Ok, maybe I haven't understood your idea then.

Mine was: check a user's password expiry if (and only if)
- the account requires a password
- the password can expire
- the account isn't disabled

And those criteria are met if the userAccountControl value is "512".

Oh wait: as you are checking bits, you have the SmartCard case covered 
as well, right?

Ole



On 14.02.2017 13:29, Rowland Penny via samba wrote:
> On Tue, 14 Feb 2017 13:07:17 +0100
> Ole Traupe via samba <samba at lists.samba.org> wrote:
>
>> Yes, but if the password never expires, I don't need to include it
in
>> the check the script performs.
>>
> Yes and doing it my way ensures the user will get excluded.
>
> Rowland
>