--On Wednesday, April 15, 2020 8:49 PM +0200 Michael Ströder michael@stroeder.com wrote:
But I disagree to call it a deficiency that it's not possible to violate minimum password length constraint with a relax control or similar. This has to be carefully considered and decided for each possible use-case.
I was talking more the original use case -- That you can't create an admin user (or group of admin users) that can reset a user's password (not that you can violate the policy around those passwords). That was the original request:
"Is there a way to create the admin user so that this user can have the same privilege as rootdn and I don't need to bind as rootdn in my application?"
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com