[Date Prev][Date Next]
RE: Expiring user passwords fails after first expiry
Thanks for your updates.
Today I reconfigured the system with openLDAP 2.3.37 server. But still
facing the same issue. Password expires the first time but is never
Will you please tell me where to look for to debug this issue further,
if nothing sounds suspicious on the first go?
From: Howard Chu [mailto:firstname.lastname@example.org]
Sent: Tuesday, July 24, 2007 10:04 AM
To: Gatne, Vikrant (Vikrant)
Subject: Re: Expiring user passwords fails after first expiry
Gatne, Vikrant (Vikrant) wrote:
> I am using openLDAP 2.3.32 on RHEL 4.0. I have configured openLDAP for
> password expiration. The system is still under testing phase. Created
> the basic password policy with
> dn: cn=basicPwdPolicy,dc=avaya,dc=com
> cn: basicPwdPolicy
> objectClass: device
> objectClass: pwdPolicy
> objectClass: top
> pwdAttribute: 18.104.22.168
> pwdMaxAge: 180
> pwdMaxAge is set to 3 minutes just for testing.
> And set the above policy as the default policy in slapd.conf file.
> Whenever I create a new user, it is prompted for a password change
> after first 3 minutes are expired. and when the user changes his
> password, he is never prompted for a password change ever again. It
stays there forever.
> Not sure why it fails to do it again. If anyone can guide me, it would
> be indeed of great help.
Haven't got a clue. It all works fine here on OpenLDAP 2.3.37 and
OpenSUSE 10.2. Since you've just started testing, you should really be
using the most recent release. 2.3.32 is quite old already.
-- Howard Chu
Chief Architect, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/