[Date Prev][Date Next] [Chronological] [Thread] [Top]

multiple password policies?

To: openldap-software@openldap.org
Subject: multiple password policies?
From: "R.B." <allegatis@gmail.com>
Date: Mon, 3 Dec 2007 15:35:57 -0800
Content-disposition: inline

Hi;

After reading some ppolicy HOWTOs, I've seen the following line in the
slapd.conf file to assign a default password policy to users.

slapd.conf file contains:
`ppolicy_default "cn=default,ou=policies,dc=example,dc=com"`

So I imagine this is used as the default policy for all users since
it's defined globally.

If I have several OUs that define users, groups, etc… how would I
implement a password policy per user/group?

For my setup, I would conceivably have:
cn=swa-ppolicy,ou=ppolicies,dc=example,dc=com
and
cn=pse-ppolicy,ou=ppolicies,dc=example,dc=com

...and so on as I need policies in my directory.

How can I apply these per group or user? Would I add a field to my
posix[User|Group] schema?

Thanks!

Rafael

Follow-Ups:
- Re: multiple password policies?
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: slapadd import/slapd startup:AttributeType errors in Buchan RPMs??
Next by Date: account locking strategy
Index(es):
- Chronological
- Thread