[Users] How to remove zimbraAuthTokens in 8.8.15

Info Zeta Alliance info at zetalliance.org
Mon Jan 13 17:44:42 CET 2020 

Thanks! 

I also found an alternative way, by deleting zimbraAuthTokens, which I added to the wiki you mentioned. 

Kind regards, 

Barry de Graaff 
Zeta Alliance 
Co-founder & Developer 
zetalliance.org | github.com/Zimbra-Community 

Signal: +31 617 220 227 
Fingerprint: 97f4694a1d9aedad012533db725ddd156d36a2d0 


From: "Frédéric Nass" <frederic.nass at univ-lorraine.fr> 
To: "info" <info at zetalliance.org>, users at lists.zetalliance.org 
Sent: Monday, 13 January, 2020 15:13:07 
Subject: Re: [Users] How to remove zimbraAuthTokens in 8.8.15 



Hi Barry, 

I believe you should change zimbraAuthTokenValidityValue. It is still working in 8.8. We add 1 to the current value which, as effect, invalidates all outstanding auth tokens for the specific user. 
I believe setting the value to 1 has the same effect (than adding 1), so as described here by Adam: [ https://wiki.zimbra.com/wiki/Ajcody-User-Management-Topics#Prior_To_605_-_Use_CLI_To_Change_zimbraAuthTokenValidityValue_To_Expire_The_Session | https://wiki.zimbra.com/wiki/Ajcody-User-Management-Topics#Prior_To_605_-_Use_CLI_To_Change_zimbraAuthTokenValidityValue_To_Expire_The_Session ] 


zmprov desc -a zimbraAuthTokenValidityValue 
zimbraAuthTokenValidityValue 
if set, this value gets stored in the auth token and compared on every 
request. Changing it will invalidate all outstanding auth tokens. It 
also gets changed when an account password is changed. 

type : integer 
value : 
callback : 
immutable : false 
cardinality : single 
requiredIn : 
optionalIn : account 
flags : domainAdminModifiable 
defaults : 
min : 0 
max : 
id : 1044 
requiresRestart : 
since : 6.0.0_GA 
deprecatedSince : 


zmprov ma <accountname> zimbraAuthTokenValidityValue 1 

zmprov fc account <accountname> is not mandatory I think. 

Best regards, 
Frédéric Nass
Direction du Numérique
Sous-direction Infrastructures et Services

Tél : 03.72.74.11.35 
Le 13/01/2020 à 12:55, Info Zeta Alliance a écrit : 



In old versions of Zimbra I could do: 
zmprov -l ma [ mailto:j.doe at example.org | j.doe at example.org ] zimbraAuthTokens "" 
This would end all that users sessions, since 8.8.something this cannot be done anymore 

[] WARN: LDAP auth token cannot be parsed 
[] WARN: LDAP-formatted value for ephemeral attribute zimbraAuthTokens cannot be converted to an ephemeral input 

Some mentions about it in the admin guide, 

Does anyone know HOW I can remove all zimbraAuthTokens in 8.8.15? 


Kind regards, 

Barry de Graaff 
Zeta Alliance 
Co-founder & Developer 
zetalliance.org | github.com/Zimbra-Community 

Signal: +31 617 220 227 
Fingerprint: 97f4694a1d9aedad012533db725ddd156d36a2d0 



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zetalliance.org/pipermail/users_lists.zetalliance.org/attachments/20200113/4a26e134/attachment.html>

More information about the Users mailing list