feat(ldap_it4i): generate userPassword only when user has valid password

Created by: zlamalp

• Users which were not imported from IT4I have valid passwords.

• Imported Users in assignToSameLogin status already had valid passwords.

• Other imported Users are checked against last pwd change (non-empty => have valid password).

• Stop gen script for safety if imported user with "it4iBlockCollision" is found. Such users must be resolved manually.