[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ppolicy: invalid value for attributeType pwAttribute -- for "userPassword"

To: openldap-software@openldap.org
Subject: Re: ppolicy: invalid value for attributeType pwAttribute -- for "userPassword"
From: Tony Earnshaw <tonni@hetnet.nl>
Date: Sat, 23 Feb 2008 09:38:25 +0100
In-reply-to: <87skzk853y.fsf@magenta.l4b.de>
References: <47BF5281.8090007@nasa.gov> <87skzk853y.fsf@magenta.l4b.de>
User-agent: Thunderbird 2.0.0.9 (X11/20071031)

Dieter Kluenter skrev, on 23-02-2008 09:11:

I'm running 2.3.39 and using ppolicy to enforce our password
policy. Got an LDIF file:

dn: cn=npg2810,ou=policies,dc=nasascience,dc=nasa,dc=gov
cn: npg2810
objectClass: top
objectClass: pwdPolicy
objectClass: organizationalRole
objectClass: pwdPolicyChecker
description: OpenLDAP ppolicy to implement NPG2810-like restrictions
pwdAttribute:                   userPassword


pwdAttribute value should contain the OID of attribute type userpassword,
which is 2.5.4.35

Well, it works (now, it didn't the first time) with userPassword on my (production) rigs, too. Both should work, but if I (now) put the OID value into the ldif, it magically gets transformed into the string userPassword.

Best,

--Tonni

--
Tony Earnshaw
Email: tonni at hetnet dot nl

References:
- ppolicy: invalid value for attributeType pwAttribute -- for "userPassword"
  - From: Chris Shenton <chris.shenton@nasa.gov>
- Re: ppolicy: invalid value for attributeType pwAttribute -- for "userPassword"
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

Prev by Date: Re: ppolicy: invalid value for attributeType pwAttribute -- for "userPassword"
Next by Date: Re: slapd does not answer in time
Index(es):
- Chronological
- Thread