[Date Prev][Date Next] [Chronological] [Thread] [Top]

problem with security ppolicy



  hello

     OpenLdap 2.4.18.

  Attribute "pwdAccountLockedTime" is set, but auth is still  Ok .      Why ?     On Ldap 2.3   it works normal - user don't auth after this date.
  
# date
Tue Sep 22 21:24:44 MSD 2009
  
ldapsearch -h localhost  -x   -b 'ou=SrpUsers,dc=company,dc=com' -D "cn=admin,dc=company,dc=com"  -w  password   "cn=_1*" +   | grep pwdAccountLockedTime

pwdAccountLockedTime: 20090922153148Z

but

 slapauth   -v -f /usr/local/etc/openldap/slapd.conf   -U  _125363  -X u:_125363
bdb_db_open: warning - no DB_CONFIG file found in directory /usr/local/var/accesslog-data: (2).
Expect poor performance for suffix "cn=accesslog".
bdb_db_open: warning - no DB_CONFIG file found in directory /usr/local/var/openldap-data: (2).
Expect poor performance for suffix "dc=company,dc=com".
ID:      <_125363>
authcDN: <uid=_125363,cn=auth>
authzDN: <uid=_125363,cn=auth>
authorization OK

How I can resolve problem with non-working   "pwdAccountLockedTime"   ?


-- 
---______________________________________________---
 Evgeniy