Thanks Patrick. It helped me to very much extend but again getting stuck in pushing password policy on openldap. I got stuck in 2.4.23 and upgraded to 2.4.39. But still it is an issue.
test 1: Changing the password of user without meeting pwdMinLength attribute. But test got failed. ldappasswd -x -W -D "cn=Manager,dc=example,dc=com" -H ldaps://xxx-xxx-xxx.example.com -s new -a Welcome123 "uid=tuser,ou=Users,dc=example,dc=com" Enter LDAP Password: [root@xxx-xxx-xxx openldap]#
Ploicy is as follow:
# Policies, j.cinglevue.com dn: ou=Policies,dc=j,dc=cinglevue,dc=com ou: Policies description: Directory policies. objectClass: organizationalUnit
# Standard, Policies, j.cinglevue.com dn: cn=Standard,ou=Policies,dc=j,dc=cinglevue,dc=com objectClass: top objectClass: device objectClass: pwdPolicy cn: Standard pwdAttribute: userPassword pwdMaxAge: 2592000 pwdCheckQuality: 1 pwdMinLength: 8 pwdExpireWarning: 432000 pwdGraceAuthNLimit: 3 pwdLockout: TRUE pwdLockoutDuration: 1800 pwdMaxFailure: 3 pwdFailureCountInterval: 0 pwdMustChange: TRUE pwdAllowUserChange: TRUE pwdSafeModify: TRUE
Not able to found ppolicy.la in my system but copied the same from previous version. Hope that id not effecting.
Regards sam
On Friday, 7 March 2014 12:48 AM, Patrick Laimbock patrick@laimbock.com wrote:
On 06-03-14 05:06, saurabh ohri wrote: [snip]
really shock to see that there is no proper document for the
Documentation like the Admin Guide, the man pages and the FAQ are all easily available on openldap.org:
http://www.openldap.org/doc/ http://www.openldap.org/software/man.cgi http://www.openldap.org/faq/data/cache/1.html
installation and configuration. 2.4.39 have to be configured from source and not rpm so facing hell lot of issue.
Installation instructions are in the OpenLDAP source INSTALL file: http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=blob;f=INSTALL;h=7...
If you need RPMs, did you Google or search the list archives where it's mentioned many times?
The LTB Project maintains OpenLDAP RPM packages: http://tools.ltb-project.org/news/46
And Symas provides OpenLDAP RPM packages and services for the Enterprise: https://symas.com/products/symas-openldap-directory/
Cheers, Patrick