[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: SVN keeps getting my AD password revoked.

From: Bert Huijben <bert_at_qqmail.nl>
Date: Tue, 18 Sep 2012 04:59:34 -0700

> -----Original Message-----
> From: Wendell Nichols [mailto:wcn00_at_shaw.ca]
> Sent: maandag 17 september 2012 18:16
> To: users_at_subversion.apache.org
> Subject: SVN keeps getting my AD password revoked.
> I have many eclipse subversion based projects. I work on them as
> needed. the probelm is that if I open a project that I haven't accessed
> in some time and the cached svn password is old (and therefore wrong) by
> the time I notice it has tried three times (or more) under the covers to
> login and AD revokes my userid. If I'm working when the helpdesk is not
> manned, I'm screwed till the next day!
> I would like to have a setting that restricts auth errors to one attempt
> before notifying me. That includes, for instance, opening three old
> projects at once.

This is how active directory is setup on your system.
The number of allowed attempts and the block time are completely
configurable by your enterprise admin and what you describe are certainly
not the common defaults. Where I used AD before we had a limit of 5 attempts
which automatically reset to 0 when a successful login was attempted. And it
only blocked for 15 minutes.
(Which would allow about 500 unique password attempts in 24 hours. Low
enough to keep a half year valid good password safe)

Subversion over http/https should usually only attempt once before prompting
so I don't see why you see it blocking your access.
Maybe there are scenarios where Eclipse/Subclipse/Subversion retries for
you, but that is not something we can fix with a single generic solution in
Subversion itself.

In my case my mail client and VPN access were more likely to get me locked

> Does this sound familiar?
> Thanks Wendell Nichols
Received on 2012-09-18 14:00:24 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.