I would like to see the password complexity feature configurable with the GPO's or at least activable/deactivable by a configuration directive. I think some people doesn't like this feature, so they can turn it off. (Derived from bug 4817)
Currently this setting is configured in LDB, but it's a pain to see and change. Do you think a SWAT GUI would be enough to fix this for you?
Maybe that could be a acceptable solution for now and also for the alpha. But on a later stage I think, SAMBA 4 should match the Windows behaviour. So we should read and interpret the settings like a Windows Server.
Since it's not really a bug, I'll mark it as a feature request.
Im using samba4 alpha5 and its working ok, except GPO 'computer config' (GPO 'user config' working fine)... even if i set "use complex passwords" to disable, its impossible to change password to a simple pass..(even after restart winxp).. Is this feature working when I use dsa.msc?
Look at my script, Andrew!
I like it, but I think a single script should control minimum password age, minimum password length, the complexity bit and maybe the others too. That is, can you rework it into a slightly more general tool?
Updated URL and script
Great work! The only thing missing now is the blackbox test. At the very least edit the setup/tests/blackbox_setpassword.sh script to check it runs, but it would be really great if you could modify testprogs/blackbox/test_passwords.sh to set the policies (do a pw change to a simiple password, check it fails, turn off complexity, then do it again, then set complexity and change it again).
Should also be fixed now.