[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Last bind attempt timestamp

To: Alina Dubrovska <alina.second@gmail.com>
Subject: Re: Last bind attempt timestamp
From: Howard Chu <hyc@symas.com>
Date: Mon, 05 Feb 2007 19:40:38 -0800
Cc: openldap-software@openldap.org
In-reply-to: <6024b9e20702050552k6b2b4093xba2de4a1a6685b86@mail.gmail.com>
References: <6024b9e20702050552k6b2b4093xba2de4a1a6685b86@mail.gmail.com>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a1) Gecko/20060911 Netscape/7.2 (ax) Firefox/1.5 SeaMonkey/1.5a

Alina Dubrovska wrote:

Hello, We use OpenLDAP 2.3.27 as a user directory for our application. Now I need to keep track of directory user bind activities. More precisely I need to be able to get timestamp of last bind attempt for particular entry. Is such a thing possible in OpenLDAP? Does it record bind attempts somehow?

If you use the ppolicy overlay it can record failed Bind attempts. But the record is erased after a successful Bind.

My personal solution options are the following: 1) create attribute for last bind timestamp and fill it programmatically from the application 2) use slapo-accesslog(5) overlay, since there is a possibility to log bind operations in separate database

Option 2 seems like your best bet.

But maybe nevertheless there is some already existing entry attribute with such a timestamp?

No.

Thanks in advance! Alina.


--
  -- Howard Chu
  Chief Architect, Symas Corp.  http://www.symas.com
  Director, Highland Sun        http://highlandsun.com/hyc
  Chief Architect, OpenLDAP     http://www.openldap.org/project/

References:
- Last bind attempt timestamp
  - From: "Alina Dubrovska" <alina.second@gmail.com>

Prev by Date: slurpd: skip repl record for(cont)
Next by Date: syncrepl problem
Index(es):
- Chronological
- Thread