Re: Antw: [EXT] Problem with ppolicy overlay and userPassword attribute
>> Quanah Gibson-Mount <quanah(a)fast-mail.org> schrieb am
18.02.2022 um 22:37
in
Nachricht <8A1ED4C1E941394D45838C24(a)[192.168.1.12]>:
‑‑On Friday, February 18, 2022 9:03 AM +0100 Ulrich Windl
<Ulrich.Windl(a)rz.xn--uniregensburg-dm6g.de> wrote:
> But I should be able to query it, right? If so what is the correct filter
> expression?
Yes, if you query the right place. I.e., cn=subschema:
ldapsearch ... ‑s base ‑b "cn=subschema" +
When I try that I get "No such object", and when I try
"cn=schema,cn=config"
with "(olcAttributeTypes=*)" and "sub" I see
cn=schema,cn=config
cn={0}core,cn=schema,cn=config
cn={1}cosine,cn=schema,cn=config
...
cn={6}sudo,cn=schema,cn=config
but no userPassword anywhere.
That's why I was asking. Or is it available only recently?
However the string is in the binary:
# strings /usr/lib/openldap/slapd |grep userPass
( 2.5.4.35 NAME 'userPassword' DESC 'RFC4519/2307: password of user'
EQUALITY
octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )
Regards,
Ulrich
Regards,
Quanah