28 Mar
2012
28 Mar
'12
11:51 p.m.
Gabriella Turek wrote:
Setup: OpenLDAP 2.4 SUSE SLES11, chaining (read only) to an AD directory
- Under my db configuration added the entries
overlay ppolicy ppolicy_default "cn=default,ou=pwpolicies,dc=niwa,dc=local"
Which password do you expect to be checked? How do you set the password?
Note that MS AD has indeed a separate attribute 'userPassword' but IIRC with AD's default configuration the password check when processing a bind request uses the internally stored password which is written as attribute 'unicodePwd'. So probably you have to rethink your approach.
Ciao, Michael.