Btw, I am seeing that error, when attempting to add the attribute "pwdPolicySubentry" to a specific user. John D. Borresen (Dave) Ph: (781) 981-1609 Email: email@example.com -----Original Message----- From: Michael Ströder [mailto:firstname.lastname@example.org] Sent: Thursday, December 17, 2015 11:46 AM To: Borresen, John - 0444 - MITLL; openldap-technical Subject: Re: Attribute pwdPolicySubentry Borresen, John - 0444 - MITLL wrote: > When trying to add the pwdPolicySubentry attribute, I receive the following: > "According to the schema attribute pwdPolicySubentry is not allowed." It works for me. Which component does produce this error message? Which OpenLDAP version are you using? Did you add the ppolicy schema? Did you active slapo-ppolicy in the database (section)? > First, can someone explain the meaning of #2. The way, that I read that is > that if the "pwdPolicySubentry" is not available, and the policy was > created.then the policy is applied. Is that correct? Yes, the policy in the pwdPolicy entry referenced by ppolicy_default is applied if you don't specify a specific pwdPolicy entry in attribute 'pwdPolicySubentry'. Ciao, Michael.
Description: S/MIME cryptographic signature