27 Apr
2014
27 Apr
'14
11:22 p.m.
Paul B. Henson wrote:
We're testing the ppolicy module for the purposes of enabling account lockout on our ldap infrastructure. During initial testing, I noticed that it didn't seem to be catching all of the failed logins, and then realized that the pwdFailureTime attribute in which they are stored seems to have a granularity of only 1 second?
Yes, there's already an ITS present for that:
http://www.openldap.org/its/index.cgi?findid=7161
Ciao, Michael.