Novell Universal Password Diagnostic Utility, Version 4

Novell Universal Password Diagnostic Utility, Version 4

This tool only allows you to view the status of the current passwords. It does not tell you what the current password is. A good method for seeing if someone has not changed their password is to use Softerra which can dump a report of everyone with the nspmDistributionPassword Attributes. 

http://download.novell.com/Download?buildid=zGZqT_4Fs7M~

https://www.dropbox.com/s/4vvzb3jl9mvd39v/diagpwd4.zip?dl=0

DIAGPWD is a tool that allows an administrator to view the Universal Password status for Simple, NDS, Distribution, and Universal passwords. 

New features in this release:
- Diagpwd ported to Linux
- Display Password Status of Distribution Password
- Display date and timestamp of last password change in GMT (requires installation of Security Services 2.0.4 patch (or greater) and manual schema extension from Security Services 2.0.4 patch (or greater)(Extend schema with the following schema files: nspm.sch, nmas.sch, and nsimpm.sch). For the latest "Security Services" patch, visit http://download.novell.com and search for "Security Services".

To use Diagpwd:

Extract DIAGPWD4.ZIP to a Linux or Windows workstation.

For Linux workstations:
1. Copy libnmasext.so to /usr/lib
2. Make diagpwd executable by doing the following: "chmod 755 diagpwd"

For example: 
bberger@sd1:~/diagpwd4>cp libnmasext.so /usr/lib
bberger@sd1:~/diagpwd4> chmod 755 diagpwd
bberger@sd1:~/diagpwd4>./diagpwd

Output of Diagpwd.exe:
The output will display the user(s) DN, email address, date of last password change, as well as their password status and Password Policy assigned.

****************************************************
Object DN: cn=bberger,ou=users,o=novell
EMail: [NONE]
Last Changed Date: 2007-03-20 21:48:28 Z
Password Status: Enabled, Set, UP != Simple
Distribution Password Status: Set
Simple Password Status: Not set
Password Policy DN: cn=Users UP Policy,ou=users,o=novell

Password Policy DN: cn=Users UP Policy,ou=users,o=novell
Options: 0x354 (852)
Universal Password enabled
Advanced policy enabled
Sync NDS
Sync Simple disabled
Synch external
User readable
Not admin readable
****************************************************

The Password Status can be:
Disabled/Enabled
Not Set, Set
!=NDS (not equal to NDS)
UP != Simple (Universal Password not equal to Simple Password)

Examples:
Password Status: Enabled, Set
Simple Password Status: Set

Password Status: Universal Password disabled, Not set
Simple Password Status: Set, Simple != NDS


Search Examples:

Base searchScope example (Base level searches only search the object specified in searchBase)

Linux example: 
./diagpwd 192.168.79.32 636 /home/bberger/cert.der cn=bberger,ou=users,o=novell base cn=admin,o=novell
Password: *****

Windows example:
diagpwd 192.168.79.32 636 C:\cert.der cn=bberger,ou=users,o=novell base cn=admin,o=novell
Password: *****