[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
(ITS#8208) ppolicy supportedControl not visible in root DSE
Full_Name: Robert Brooks
Version: openldap-2.4.41
OS: Ubuntu 14.04
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (38.99.38.134)
Hi,
with ppolicy overlay loaded (and functioning) the following root DSE is:
structuralObjectClass: OpenLDAProotDSE
configContext: cn=config
namingContexts: dc=ldap,dc=example,dc=org
supportedControl: 2.16.840.1.113730.3.4.18
supportedControl: 2.16.840.1.113730.3.4.2
supportedControl: 1.3.6.1.4.1.4203.1.10.1
supportedControl: 1.2.840.113556.1.4.319
supportedControl: 1.2.826.0.1.3344810.2.3
supportedControl: 1.3.6.1.1.13.2
supportedControl: 1.3.6.1.1.13.1
supportedControl: 1.3.6.1.1.12
supportedExtension: 1.3.6.1.4.1.1466.20037
supportedExtension: 1.3.6.1.4.1.4203.1.11.1
supportedExtension: 1.3.6.1.4.1.4203.1.11.3
supportedExtension: 1.3.6.1.1.8
supportedFeatures: 1.3.6.1.1.14
supportedFeatures: 1.3.6.1.4.1.4203.1.5.1
supportedFeatures: 1.3.6.1.4.1.4203.1.5.2
supportedFeatures: 1.3.6.1.4.1.4203.1.5.3
supportedFeatures: 1.3.6.1.4.1.4203.1.5.4
supportedFeatures: 1.3.6.1.4.1.4203.1.5.5
supportedLDAPVersion: 3
supportedSASLMechanisms: DIGEST-MD5
supportedSASLMechanisms: NTLM
supportedSASLMechanisms: CRAM-MD5
entryDN:
subschemaSubentry: cn=Subschema
I would expect to see output similar to...
http://docs.forgerock.org/en/opendj/2.6.0/dev-guide/index/chap-getting-directory-info.html#read-root-dse
D0D
specifilllly line 12 (and maybe line 40).
I believe this is why the following pam_ldap config:
# Search the root DSE for the password policy (works
# with Netscape Directory Server)
pam_lookup_policy yes
does not make pam_ldap to interact with password policies against when
configured in openldap.
Regards,
Rob