[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Configuring ppolicy problem

To: cbulist <cbulist@gmail.com>
Subject: Re: Configuring ppolicy problem
From: Clément OUDOT <clem.oudot@gmail.com>
Date: Wed, 29 Aug 2012 19:51:55 +0200
Cc: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=CC6k+x7g5pYs4Or2k5nUB04VEAO+NvNc9m1LMwszMrk=; b=apC86SBZEWC9S6DQhFLCo/0HZwMaOU2VdVdU865oY3fXZCflyUgc5pdKTyXv46PGuJ RZjP4iCxUS/q5seJpvNtHp2pSDUJzt9hLAkCcNW/nNF5XGjwTXo1DC1mppEXwC0aHjlS xML3cQ0K2B1EJCoV8znrClG530XLM4JTMPiwXq5RbG99zXLjFq2ZoLxG85FLjfjjDVP8 vtFmxDm/PhSowRVOjNj9dnC6X1g93cSx58mhY8eVbC8QZeZWhvW3X8Y+m3cMdo/sDI7k 3sR7ZN419jrSFCRIZ6axTjZZ7BeoQTI6oqPswaIXfvRKTkFzMi/nt8yEQnE1XqItYSQe QaQw==
In-reply-to: <503E3798.5000301@gmail.com>
References: <503BE6E7.4000809@gmail.com> <AEC8A374AE8AA74E85723C695791A2D090F0F57D52@CARNELIAN.ad.northcentral.edu> <503E3798.5000301@gmail.com>

2012/8/29 cbulist <cbulist@gmail.com>:
> Hi,
>
> I got stuck with this problem. I'm able to change the user password using
> shadowAccount objectClass but I can't do the same using pwdPolicy
> objectClass. I set ppolicy attribute in order to get the password expired
> message:
>
> pwdExpireWarning 10
> pwdMaxAge 15
> pwdMustChange TRUE
> pwdAllowUserChange TRUE
> pwdLockout TRUE
>
>
>
> slapd.conf:
>
> include    /etc/openldap/schema/ppolicy.schema
>
> moduleload    ppolicy.la
>
> access to attrs=userPassword
>  by self write
>  by users read
>  by anonymous auth
>
> access to *
>  by * read
>
>
>
> overlay    ppolicy
> ppolicy_default "cn=default,ou=policies,dc=sample,dc=com"
> ppolicy_use_lockout
>
>
> I really appreciate any help with this problem.


Can you show us all operational attributes from your user entry?

Clément.

References:
- Configuring ppolicy problem
  - From: cbulist <cbulist@gmail.com>
- RE: Configuring ppolicy problem
  - From: Andy Poirier <atpoirie@northcentral.edu>
- Re: Configuring ppolicy problem
  - From: cbulist <cbulist@gmail.com>

Prev by Date: Re: help with setting up replication
Next by Date: Re: Configuring ppolicy problem
Index(es):
- Chronological
- Thread