[Date Prev][Date Next] [Chronological] [Thread] [Top]

password policy


i want to force a password change for a user. therefor i set pwdreset: true
but to change the password, bind attempts are still allowed.
i thinks thats the reason why a user with pwdreset=true still can login to
an apache webresource which is protected with ldap authentication.
is there a way to prohibit that?
i want the user to only allow the password change.


Attachment: smime.p7s
Description: S/MIME cryptographic signature