[Users] How to remove zimbraAuthTokens in 8.8.15

Mon Jan 13 15:13:07 CET 2020

Hi Barry,

I believe you should change zimbraAuthTokenValidityValue. It is still 
working in 8.8. We add 1 to the current value which, as effect, 
invalidates all outstanding auth tokens for the specific user.
I believe setting the value to 1 has the same effect (than adding 1), so 
as described here by Adam: 
https://wiki.zimbra.com/wiki/Ajcody-User-Management-Topics#Prior_To_605_-_Use_CLI_To_Change_zimbraAuthTokenValidityValue_To_Expire_The_Session

zmprov desc -a zimbraAuthTokenValidityValue
zimbraAuthTokenValidityValue
     if set, this value gets stored in the auth token and compared on every
     request. Changing it will invalidate all outstanding auth tokens. It
     also gets changed when an account password is changed.

                type : integer
               value :
            callback :
           immutable : false
         cardinality : single
          requiredIn :
          optionalIn : account
               flags : domainAdminModifiable
            defaults :
                 min : 0
                 max :
                  id : 1044
     requiresRestart :
               since : 6.0.0_GA
     deprecatedSince :

zmprov ma <accountname> zimbraAuthTokenValidityValue 1

zmprov fc account <accountname> is not mandatory I think.

Best regards,

Frédéric Nass
Direction du Numérique
Sous-direction Infrastructures et Services

Tél : 03.72.74.11.35

Le 13/01/2020 à 12:55, Info Zeta Alliance a écrit :
> In old versions of Zimbra I could do:
> zmprov -l ma j.doe at example.org  zimbraAuthTokens ""
> This would end all that users sessions, since 8.8.something this 
> cannot be done anymore
>
> [] WARN: LDAP auth token  cannot be parsed
> [] WARN: LDAP-formatted value  for ephemeral attribute 
> zimbraAuthTokens cannot be converted to an ephemeral input
>
> Some mentions about it in the admin guide,
>
> Does anyone know HOW I can remove all zimbraAuthTokens in 8.8.15?
>
>
> Kind regards,
>
> Barry de Graaff
> Zeta Alliance
> Co-founder & Developer
> zetalliance.org | github.com/Zimbra-Community
>
> Signal: +31 617 220 227
> Fingerprint: 97f4694a1d9aedad012533db725ddd156d36a2d0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zetalliance.org/pipermail/users_lists.zetalliance.org/attachments/20200113/826771bf/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3607 bytes
Desc: Signature cryptographique S/MIME
URL: <http://lists.zetalliance.org/pipermail/users_lists.zetalliance.org/attachments/20200113/826771bf/attachment.p7s>