[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Expiring user passwords fails after first expiry


Thanks for your updates.

Today I reconfigured the system with openLDAP 2.3.37 server. But still
facing the same issue. Password expires the first time but is never
expired again.

Will you please tell me where to look for to debug this issue further,
if nothing sounds suspicious on the first go?



-----Original Message-----
From: Howard Chu [mailto:hyc@symas.com] 
Sent: Tuesday, July 24, 2007 10:04 AM
To: Gatne, Vikrant (Vikrant)
Cc: openldap-software@openldap.org
Subject: Re: Expiring user passwords fails after first expiry

Gatne, Vikrant (Vikrant) wrote:
> Hi
> I am using openLDAP 2.3.32 on RHEL 4.0. I have configured openLDAP for

> password expiration. The system is still under testing phase. Created 
> the basic password policy with
> dn: cn=basicPwdPolicy,dc=avaya,dc=com
> cn: basicPwdPolicy
> objectClass: device
> objectClass: pwdPolicy
> objectClass: top
> pwdAttribute:
> pwdMaxAge: 180
> pwdMaxAge is set to 3 minutes just for testing.
> And set the above policy as the default policy in slapd.conf file.
> Whenever I create a new user, it is prompted for a password change 
> after first 3 minutes are expired. and when the user changes his 
> password, he is never prompted for a password change ever again. It
stays there forever.
> Not sure why it fails to do it again. If anyone can guide me, it would

> be indeed of great help.

Haven't got a clue. It all works fine here on OpenLDAP 2.3.37 and
OpenSUSE 10.2. Since you've just started testing, you should really be
using the most recent release. 2.3.32 is quite old already.
   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP     http://www.openldap.org/project/