[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Ppolicy does not seem to work

Jan Kohnert wrote:
So there comes the next question: Is there a way to lock out specific users
permanently (other than creating a cronjob setting the lockout time new after
900s) or do I need to set pwdLockoutDuration to inf and so are forced to
manually reset users whose accounts were tried to be cracked?

Read the slapo-ppolicy manpage again. This is explicitly documented.

  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/