[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: "triggers" in slapd

To: Howard Chu <hyc@symas.com>
Subject: Re: "triggers" in slapd
From: Michal Ludvig <michal@logix.cz>
Date: Wed, 20 Sep 2006 17:19:29 +1200
Cc: OpenLDAP-software@OpenLDAP.org
In-reply-to: <4510C92D.9010306@symas.com>
References: <4510662E.5080405@logix.cz> <4510C92D.9010306@symas.com>
User-agent: Thunderbird 1.5.0.5 (X11/20060728)

Howard Chu wrote:
> Michal Ludvig wrote:
> 
>> More specifically I need to update shadowExpire in posixAccount object
>> whenever either shadowLastChanged or userPassword attributes are
>> updated. Is that achievable in some elegant way?
> 
> There is no reason to update shadowExpire, since it is merely a count of
> number of days, not a specific date.

Not really. It basically *is* a date, just encoded as number of days
since 01-01-1970. Obviously if shadowExpire==13411 I want to prevent
that user from logging in after "Wed Sep 20 23:59:59 2006", i.e.
tomorrow. But if he changes the password today he should have his
shadowExpire updated to say today+2months.

I'll look at the Password Policy Overlay module ... just a naive
question - is that available for OpenLDAP 2.2.26 or do I need to upgrade
to 2.3.x?

Michal

Follow-Ups:
- Re: "triggers" in slapd
  - From: Howard Chu <hyc@symas.com>

References:
- "triggers" in slapd
  - From: Michal Ludvig <michal@logix.cz>
- Re: "triggers" in slapd
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: Return all entries in Client without modify 'sizelimit' of slapd.conf
Next by Date: Re: "triggers" in slapd
Index(es):
- Chronological
- Thread