Awesome!

So then, if it's already shipped, why dont I see the schema files for ppolicy?
Would have thought to find it here: /opt/symas/etc/openldap/schema

> find /opt/ -name *ppolicy*
/opt/symas/lib/openldap/ppolicy.la
/opt/symas/lib/openldap/ppolicy.so
/opt/symas/lib/openldap/ppolicy-2.5.so.0
/opt/symas/lib/openldap/ppolicy-2.5.so.0.1.2
/opt/symas/share/man/man5/slapo-ppolicy.5

Thank you again for the quick responses!

On Wed, Aug 25, 2021 at 2:07 PM Quanah Gibson-Mount <quanah@symas.com> wrote:

--On Wednesday, August 25, 2021 2:33 PM -0400 Dave Macias
<davama@gmail.com> wrote:

>
> Thank you Quanah for the response!
> Makes sense.
>
> One more question:
> under: /opt/symas/etc/openldap/schema/README
> It says that ppolicy is
> ppolicy.schema Password Policy Schema (work in progress)
>
>
>
> If i'm not mistaken, this would be the new ppolicy10 , yes?
> https://datatracker.ietf.org/doc/html/draft-behera-ldap-password-policy-10

Actually that should be deleted from the README, thanks. But yes, the
ppolicy shipped with OpenLDAP 2.5 is based on draft 10, as documented in
the man page.

--Quanah

--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>