29 Aug
2012
29 Aug
'12
10:51 a.m.
2012/8/29 cbulist cbulist@gmail.com:
Hi,
I got stuck with this problem. I'm able to change the user password using shadowAccount objectClass but I can't do the same using pwdPolicy objectClass. I set ppolicy attribute in order to get the password expired message:
pwdExpireWarning 10 pwdMaxAge 15 pwdMustChange TRUE pwdAllowUserChange TRUE pwdLockout TRUE
slapd.conf:
include /etc/openldap/schema/ppolicy.schema
moduleload ppolicy.la
access to attrs=userPassword by self write by users read by anonymous auth
access to * by * read
overlay ppolicy ppolicy_default "cn=default,ou=policies,dc=sample,dc=com" ppolicy_use_lockout
I really appreciate any help with this problem.
Can you show us all operational attributes from your user entry?
Clément.