[Date Prev][Date Next]
Re: Password policy definitions
According with man 5 slapo-policy and OpenLDAP site docs, in attribute
pwdAttribute I have to input value userPassword, but this attribute
does not support strings (according with my tries), so I inserted
correspondent userPassword OID (22.214.171.124.4.1.14126.96.36.199.40) and
even number 1 or 0 (to enable or disable checking).
After that I defined in pwdMaxFailure to 2 and pwdLockout to TRUE, and
then I tried twice wrong passwords and in the third shot I was able to
Another test tah I did was defining pwdExpireWarning to few minutes
(5) and pwdMaxAge to 10 minutes, but when I do login, I didn't receive
warning message, and I can login after 10 minutes after first login.
Is there any missing parameter that I have to setup or do I am doing
something wrong ?
2008/4/26 Michael Ströder <firstname.lastname@example.org>:
> Gustavo Mendes de Carvalho wrote:
> > 2008/4/25 Gustavo Mendes de Carvalho <email@example.com>:
> > > I already installed version 2.3 but now I would like to know wher can
> > > I get some documentation about configuring back_passwd.la. Do you have
> > > any link describing it ?
> > >
> > Sorry about my mistake.
> > I meant to say ppolicy.la
> man 5 slapo-ppolicy
> For OpenLDAP 2.3:
> For OpenLDAP 2.4:
> Ciao, Michael.
Gustavo Mendes de Carvalho