[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Disabling User Account



On Wed, Nov 26, 2008 at 05:15:39PM +0530, piyush joshi wrote:

>                   Is there any Schema or Attribute which can be used to
> disable user account if that account is not being used from one month or by
> providing date in advance to
> disable the account in future automatically.

Some of those things can be done using password policies:

	http://www.openldap.org/doc/admin24/overlays.html#Password%20Policies

Note that such policies only affect authentication *to the LDAP server*
so you will need to consider how your applications use LDAP:
If they authenticate users by binding to LDAP as the user then the
password policy will probably do what you want. On the other hand,
if authentication is done by reference to attributes read from the
user entry then the policy will not do anything.

Andrew
-- 
-----------------------------------------------------------------------
|                 From Andrew Findlay, Skills 1st Ltd                 |
| Consultant in large-scale systems, networks, and directory services |
|     http://www.skills-1st.co.uk/                +44 1628 782565     |
-----------------------------------------------------------------------