Folgendes Technote hat geholfen...
False message 'password changed successfully' on Notes 8.0.2
Problem
In Lotus Notes/Domino 8.0.2, If you change a password to a previously used password with a security policy in place, an error is expected of "cannot use previous password." Instead, the message "password change successful" appears, even though the modified password cannot be used.
Steps to reproduce:
1. Set up a security policy and make the "password history" = 4 (or any number greater than 1) and assign this to a test user. Confirm that the Server Document > Security tab has "check password of Notes ID" set to enabled.
2. Log on with the test user account from a Notes 8.0.2 client to a Domino 8.0.2 server. Change the password to "passwordA". You received a "password change successful" message.
3. Log off, then back on, and confirm you have logged on as the test user account with passwordA. Change the password again, this time to "passwordB." You receive a "password change successful" message.
4. Log off, then back on, and confirm that you logged on with passwordB. Change the password again, this time back to "passwordA", which should not work according to the policy assigned to the test user account. The "password change successful" message appears instead of generating an error stating "cannot use previously used password."
5. Log off, then back on, and attempt to use "passwordA". This fails, but you are able to log on with "passwordB" instead.
Cause
The "password change successful" is incorrect. Instead, an error message should appear.
Resolving the problem
This issue has been reported to Quality Engineering as SPR# CCRT7KWT7H, but is listed as resolved in Notes 7.0.4, Notes 8.0.2 Fix Pack 2 and Notes 8.5.1.
Communicate to the end users that the "password change successful" is false if using a previously used password that does not meet security policy criteria.
Thema: Kennwörter lassen sich nicht ändern (Gelesen 1241 mal)