<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Hi Barry,</p>
<p>I believe you should change zimbraAuthTokenValidityValue. It is
still working in 8.8. We add 1 to the current value which, as
effect, invalidates all outstanding auth tokens for the specific
user.<br>
I believe setting the value to 1 has the same effect (than adding
1), so as described here by Adam:
<a class="moz-txt-link-freetext" href="https://wiki.zimbra.com/wiki/Ajcody-User-Management-Topics#Prior_To_605_-_Use_CLI_To_Change_zimbraAuthTokenValidityValue_To_Expire_The_Session">https://wiki.zimbra.com/wiki/Ajcody-User-Management-Topics#Prior_To_605_-_Use_CLI_To_Change_zimbraAuthTokenValidityValue_To_Expire_The_Session</a><br>
</p>
<p>zmprov desc -a zimbraAuthTokenValidityValue<br>
zimbraAuthTokenValidityValue<br>
if set, this value gets stored in the auth token and compared
on every<br>
request. Changing it will invalidate all outstanding auth
tokens. It<br>
also gets changed when an account password is changed.<br>
<br>
type : integer<br>
value : <br>
callback : <br>
immutable : false<br>
cardinality : single<br>
requiredIn : <br>
optionalIn : account<br>
flags : domainAdminModifiable<br>
defaults : <br>
min : 0<br>
max : <br>
id : 1044<br>
requiresRestart : <br>
since : 6.0.0_GA<br>
deprecatedSince : <br>
</p>
<p>zmprov ma <accountname> zimbraAuthTokenValidityValue 1</p>
<p>zmprov fc account <accountname> is not mandatory I think.</p>
<p>Best regards,
</p>
<pre class="moz-signature" cols="72">Frédéric Nass
Direction du Numérique
Sous-direction Infrastructures et Services
Tél : 03.72.74.11.35</pre>
<div class="moz-cite-prefix">Le 13/01/2020 à 12:55, Info Zeta
Alliance a écrit :<br>
</div>
<blockquote type="cite"
cite="mid:1246678306.21.1578916547289.JavaMail.zimbra@barrydegraaff.tk">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div style="font-family: arial, helvetica, sans-serif; font-size:
12pt; color: #000000">
<div>In old versions of Zimbra I could do:<br>
zmprov -l ma <a class="moz-txt-link-abbreviated" href="mailto:j.doe@example.org">j.doe@example.org</a> zimbraAuthTokens ""<br>
This would end all that users sessions, since 8.8.something
this cannot be done anymore</div>
<div><br>
[] WARN: LDAP auth token cannot be parsed<br>
[] WARN: LDAP-formatted value for ephemeral attribute
zimbraAuthTokens cannot be converted to an ephemeral input<br>
</div>
<div><br data-mce-bogus="1">
</div>
<div>Some mentions about it in the admin guide, </div>
<div><br data-mce-bogus="1">
</div>
<div>Does anyone know HOW I can remove all zimbraAuthTokens in
8.8.15?<br>
</div>
<div><br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div data-marker="__SIG_PRE__">Kind regards, <br>
<br>
Barry de Graaff<br>
Zeta Alliance <br>
Co-founder & Developer<br>
zetalliance.org | github.com/Zimbra-Community<br>
<br>
Signal: +31 617 220 227<br>
Fingerprint: 97f4694a1d9aedad012533db725ddd156d36a2d0</div>
</div>
</blockquote>
</body>
</html>