Full_Name: Robert Brooks
OS: Ubuntu 14.04
Submission from: (NULL) (22.214.171.124)
with ppolicy overlay loaded (and functioning) the following root DSE is:
I believe this is why the following pam_ldap config:
# Search the root DSE for the password policy (works
# with Netscape Directory Server)
does not make pam_ldap to interact with password policies against when
configured in openldap.
No. That controls compatibility with the obsolete/non-standard
Netscape-specific password policy attributes.
But pam_ldap itself is also obsolete. Pretty sure Ubuntu ships with nslcd and
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/