[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Ppolicy DIGEST-MD5 ignore expired password

Jiri Netolicky wrote:
Have a nice day.

I have to implement password policy in our OpenLdap. During testing futures
of ppolicy module I found that they ignore expired password when I authenticate
user by SASL DIGEST-MD5.
When I try on exprired account:

Correct. Password policies as currently defined in LDAP only affect Simple Binds.

  -- Howard Chu
  Chief Architect, Symas Corp.  http://www.symas.com
  Director, Highland Sun        http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP     http://www.openldap.org/project/