[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Enabling Password Policy Messages via Extended Controls in OpenLDAP

To: Shawn McKinney <smmtech2@sbcglobal.net>
Subject: Re: Enabling Password Policy Messages via Extended Controls in OpenLDAP
From: Howard Chu <hyc@symas.com>
Date: Tue, 23 Aug 2005 09:49:58 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <20050823155511.30322.qmail@web80701.mail.yahoo.com>
References: <20050823155511.30322.qmail@web80701.mail.yahoo.com>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8b4) Gecko/20050821 SeaMonkey/1.0a

Shawn McKinney wrote:

When I view the ldap.h file, I find the following declarations: /* Password policy Controls */ /* work in progress */ /* ITS#3458: released, but not to latest draft; disabled by default */ #define LDAP_CONTROL_PASSWORDPOLICYREQUEST "1.3.6.1.4.1.42.2.27.8.5.1" #define LDAP_CONTROL_PASSWORDPOLICYRESPONSE "1.3.6.1.4.1.42.2.27.8.5.1"

These controls don't show up in my output above. Must I enable these controls before client can read the password policy messages?

The control is automatically enabled when the password policy module is configured on a database. However, since the Password Policy specification is still in flux, we never advertise the existence of the control. See clients/tools/common.c for example code to request the control.

--
 -- Howard Chu
 Chief Architect, Symas Corp.  http://www.symas.com
 Director, Highland Sun        http://highlandsun.com/hyc
 OpenLDAP Core Team            http://www.openldap.org/project/

References:
- Re: Enabling Password Policy Messages via Extended Controls in OpenLDAP
  - From: Shawn McKinney <smmtech2@sbcglobal.net>

Prev by Date: Re: Enabling Password Policy Messages via Extended Controls in OpenLDAP
Next by Date: Re: LDAP Replication/update dn entry
Index(es):
- Chronological
- Thread