Hi,

I am experimenting with the distribution of the novell password to the
Scripting Driver connected system. I've activated all password related
policies on the sub channel of the scripting driver.
When I set the universal password in iManager for a testuser, the event is
pushed to the ScriptingDriver, and pushed forwards in a modify-password
event to the shim.
By using "PASSWORD", it displays correctly and works fine.
However, the OLD_PASSWORD variable remains suspiciously empty.
In the logging, both on the IDM server, I cannot see any action to push
the OLD_PASSWORD, nor I can see any trace of an OLD_PASSWORD being set in
the logging of the scripting driver shim on the remote machine.
I investigated the password related policies included which are included
with the Scripting driver, but cannot find any hint.
How does this work? What to do to fix it?
Thanks!
Sander

Logging of IDM3.5 Driver policy (on IDM server)
<nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.5.10.20070918 ">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<modify cached-time="20071213160824.178Z" class-name="User"
event-id="nlxidm01_01#20071213160824#1#1"
qualified-src-dn="O=aoOU=vaultOU=usersOU=activeCN=nl07921"
src-dn="IAARBAC_DEVaovaultusersactivenl07921" src-entry-id="34084"
timestamp="1197562104#6">
<association state="associated">User::nl07921</association>
</modify>
<modify-password class-name="User" event-id="pwd-subscribe"
qualified-src-dn="O=aoOU=vaultOU=usersOU=activeCN=nl07921"
src-dn="IAARBAC_DEVaovaultusersactivenl07921" src-entry-id="34084">
<association>User::nl07921</association>
<password><!-- content suppressed --></password>
</modify-password>
</input>
</nds>

Logging of remote unix scripting driver shim:
<snip>
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: COMMAND=MODIFY-PASSWORD
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: ASSOCIATION=User::nl07921
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: CLASS_NAME=User
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: EVENT_ID=pwd-subscribe
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: SRC_DN=IAARBAC_DEVaovaultusersactivenl07921
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: PASSWORD=<suppressed>
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: COMMAND=MODIFY-PASSWORD
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: ASSOCIATION=User::nl07921
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: PASSWORD=<suppressed>
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: COMMAND=MODIFY-PASSWORD
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: ASSOCIATION=User::nl07921
2007-12-13 17:08:29 [22825@58]: (drv_loopback) LoopBack_readFile: read
name/value pair: PASSWORD=<suppressed>

<snip>
2007-12-13 17:08:29 [22825@58]: (trace) "Updating CVS"
2007-12-13 17:08:30 [22825@58]: (trace) "M cfg/user/user/128000.xml
2007-12-13 17:08:30 [22825@58]: (trace) "Modify password for user
'nl07921'"
2007-12-13 17:08:30 [22825@58]: (trace) "OLD password for user: "
2007-12-13 17:08:30 [22825@58]: (trace) "NEW password for user: novell3"