https://bugs.openldap.org/show_bug.cgi?id=9156

--- Comment #8 from Quanah Gibson-Mount quanah@openldap.org --- (In reply to Ondřej Kuzník from comment #5)

Hi David, could you show a configuration when this happens? I cannot reproduce either issue on master.

I will update the manpage to mention pwdLastSuccess is used.

...

• pwdStartTime, pwdEndTime: OK, but there is no special ppolicy code returned,

and if I read correctly the draft (https://tools.ietf.org/html/draft-behera-ldap-password-policy-10#section-7.1), an "accountLocked" extended error code should be triggered.

Again, can't seem to be able to reproduce that and test022-ppolicy passes for me.

Hi David,

Can you provide the requested info? Thanks!