+ Post New Thread
Results 1 to 8 of 8
Cloud Services Thread, Google Apps: new users passwords? in Technical; Ok this is probably a stupid question but here goes: I am setting up Google Apps and have AD sync ...
  1. #1

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    7,230
    Thank Post
    1,446
    Thanked 1,859 Times in 1,252 Posts
    Blog Entries
    22
    Rep Power
    559

    Google Apps: new users passwords?

    Ok this is probably a stupid question but here goes:

    I am setting up Google Apps and have AD sync setup and working. I have tested with a few users and they have been created successfully, however, I can't seem to work out how I retrieve their passwords. Their user record just says that the password was set by the user, their new user instructions says the password was set by the admin. The bulk download doesn't have this info.

    I can reset their passwords easily enough but with about 700 users to provision this isn't a way forward.

    I guess I am missing something very obvious?

  2. #2


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341
    Quote Originally Posted by sparkeh View Post
    I guess I am missing something very obvious?
    Single Sign On ?

  3. #3

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    7,230
    Thank Post
    1,446
    Thanked 1,859 Times in 1,252 Posts
    Blog Entries
    22
    Rep Power
    559
    Quote Originally Posted by CyberNerd View Post
    Single Sign On ?
    This is further down the road, just want to get a test group on at the moment.

  4. #4

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    7,230
    Thank Post
    1,446
    Thanked 1,859 Times in 1,252 Posts
    Blog Entries
    22
    Rep Power
    559

    I left the default password blank in GAPS so a random one is generated but you can't seem to retrieve it.
    Now to set to provide a default password and force them to change on initial login.

  5. #5
    SPM
    SPM is offline

    Join Date
    Dec 2012
    Posts
    49
    Thank Post
    0
    Thanked 3 Times in 2 Posts
    Rep Power
    14
    You shouldn't be able to retrieve user passwords - that would not be a secure way of running things. The way passwords work is that only the user knows his/her password. If others can get hold of the password (and that includes the sys admin) then you can no longer identify the person logging is the person who they claim to be by his/her password. You can reset the password and send it to the user to log in and change password - this ensures that the sys admin cannot get hold of a user's password and masquerade as that user.

  6. #6

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    7,230
    Thank Post
    1,446
    Thanked 1,859 Times in 1,252 Posts
    Blog Entries
    22
    Rep Power
    559
    Quote Originally Posted by SPM View Post
    You shouldn't be able to retrieve user passwords - that would not be a secure way of running things. The way passwords work is that only the user knows his/her password. If others can get hold of the password (and that includes the sys admin) then you can no longer identify the person logging is the person who they claim to be by his/her password. You can reset the password and send it to the user to log in and change password - this ensures that the sys admin cannot get hold of a user's password and masquerade as that user.
    Well the sysadmin should be able to get new users passwords to distribute without having to reset them. That's how it usually works. So what's the difference between these two scenarios:


    1. I bulk upload my users, I get the initial passwords, I hand them out, users login and are forced to change their passwords. I no longer know their passwords.
    2. I bulk upload my users with a generic initial password, they login and are forced to change their password. I no longer know their password.


    Actually scenario one is more secure as only I have access to the initial passwords, with scenario two anybody could log into anyone's else account before them as they know the generic initial password.

  7. Thanks to sparkeh from:

    hawc (23rd December 2012)

  8. #7
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    818
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    You might find it more flexible to make your own solution with Google Apps Manager as it sounds like it's the restrictions of the sync tool that you have issue with.
    BulkOperations - google-apps-manager - Dito GAM - Google Project Hosting

  9. Thanks to morganw from:

    sparkeh (23rd December 2012)

  10. #8


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341
    Quote Originally Posted by sparkeh View Post
    Well the sysadmin should be able to get new users passwords to distribute without having to reset them. That's how it usually works.
    I appreciate you are planning Single Sign On later, so when you roll it out to everyone you won't need to distribute passwords at all.

  11. Thanks to CyberNerd from:

    sparkeh (23rd December 2012)



SHARE:
+ Post New Thread

Similar Threads

  1. Google Apps Users - Are you allowing Google+ for your domain?
    By pete in forum Virtual Learning Platforms
    Replies: 0
    Last Post: 24th February 2012, 02:58 PM
  2. Moodle/Google Apps User Sync module
    By localzuk in forum Virtual Learning Platforms
    Replies: 0
    Last Post: 8th November 2011, 09:43 AM
  3. New version of the Google Apps Directory Sync tool
    By ianniow in forum General Chat
    Replies: 3
    Last Post: 12th May 2011, 01:52 PM
  4. Replies: 6
    Last Post: 30th April 2011, 09:36 PM
  5. [MS Office - 2010] Configuring Outlook 2010/Google Apps IMAP using .prf -- not prompting for password
    By BBrian in forum Office Software
    Replies: 0
    Last Post: 13th January 2011, 09:39 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •