[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldap/pwd complexity and PAM?

To: openldap-technical@openldap.org
Subject: ldap/pwd complexity and PAM?
From: Doug OLeary <dkoleary@olearycomputers.com>
Date: Sat, 15 Feb 2014 15:03:27 -0600 (CST)
User-agent: Alpine 2.03 (LRH 1266 2009-07-14)

Hi;

In my free time, I've been studying openldap and the ppolicy overlay.

I started working on password complexity today. While searching forinformation on implementing complexity, I ran across the link immediatelyfollowing which seems to indicate that openldap honors the settings in/etc/pam.d/password-auth.


http://ubuntuforums.org/showthread.php?t=2172393

I tried configuring that on a test kvm and can't even get it working
with local accounts so obviously I borked something in the password-auth
file - like maybe not even the right pam.d file; however, before I spend
a whole lot of time troubleshooting this, is my understanding accurate?
Will openldap honor the settings in pam.d?

It seems that'd be a whole lot cleaner and more supportable than compilinga specialized password checking module.


Any info greatly appreciated.  Thanks for your time.


Doug O'Leary
------------
Senior UNIX/Security Admin
CISSP, CISA, RHCSA, CEH
O'Leary Computers Inc
dkoleary@olearycomputers.com (w) 630-904-6098 (c) 630-248-2749
linkedin: http://www.linkedin.com/in/dkoleary
resume: http://www.olearycomputers.com/resume.html

Follow-Ups:
- Re: ldap/pwd complexity and PAM?
  - From: Howard Chu <hyc@symas.com>

Prev by Date: RE: Syncrepl and mmr
Next by Date: Re: ldap/pwd complexity and PAM?
Index(es):
- Chronological
- Thread