[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#8208) ppolicy supportedControl not visible in root DSE

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#8208) ppolicy supportedControl not visible in root DSE
From: hyc@symas.com
Date: Wed, 29 Jul 2015 18:27:20 +0000
Auto-submitted: auto-generated (OpenLDAP-ITS)

robert.brooks@reporo.com wrote:
> Full_Name: Robert Brooks
> Version: openldap-2.4.41
> OS: Ubuntu 14.04
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (38.99.38.134)
>
>
> Hi,
>
> with ppolicy overlay loaded (and functioning) the following root DSE is:

> I believe this is why the following pam_ldap config:
>
> # Search the root DSE for the password policy (works
> # with Netscape Directory Server)
> pam_lookup_policy yes
>
> does not make pam_ldap to interact with password policies against when
> configured in openldap.

No. That controls compatibility with the obsolete/non-standard 
Netscape-specific password policy attributes.

But pam_ldap itself is also obsolete. Pretty sure Ubuntu ships with nslcd and 
nss-pam-ldapd now.

-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/

Prev by Date: (ITS#8208) ppolicy supportedControl not visible in root DSE
Next by Date: Re: (ITS#8208) ppolicy supportedControl not visible in root DSE
Index(es):
- Chronological
- Thread