Hi Michael
According with man 5 slapo-policy and OpenLDAP site docs, in attribute pwdAttribute I have to input value userPassword, but this attribute does not support strings (according with my tries), so I inserted correspondent userPassword OID (1.3.6.1.4.1.1466.115.121.1.40) and even number 1 or 0 (to enable or disable checking).
After that I defined in pwdMaxFailure to 2 and pwdLockout to TRUE, and then I tried twice wrong passwords and in the third shot I was able to connect in. Another test tah I did was defining pwdExpireWarning to few minutes (5) and pwdMaxAge to 10 minutes, but when I do login, I didn't receive warning message, and I can login after 10 minutes after first login.
Is there any missing parameter that I have to setup or do I am doing something wrong ?
Thanks
2008/4/26 Michael Ströder michael@stroeder.com:
Gustavo Mendes de Carvalho wrote:
2008/4/25 Gustavo Mendes de Carvalho gmcarvalho@gmail.com:
I already installed version 2.3 but now I would like to know wher can I get some documentation about configuring back_passwd.la. Do you have any link describing it ?
Sorry about my mistake.
I meant to say ppolicy.la
man 5 slapo-ppolicy
For OpenLDAP 2.3:
http://www.openldap.org/software/man.cgi?query=slapo-ppolicy&apropos=0&a...
For OpenLDAP 2.4:
http://www.openldap.org/software/man.cgi?query=slapo-ppolicy&apropos=0&a...
Ciao, Michael.