Thank you, Perfec, Dieter. I cannot compile the OpenLDAP.org version. I have tried several suggested methods from internet to test the policy, none work as I get syntax error. Suggestions?
Example: openldapwhoami -e ppolicy -X -D "cn=Manager,dc=$DC1,dc=$DC2" "uid=$U" ldapsearch -e ppolicy -D "uid=user02,ou=People,dc=training,dc=com" -W
Is there a command to see what policies are loaded via slapd.conf ? - David.
---------------------------------------------------------
Am Tue, 17 Dec 2013 18:35:10 +0000
schrieb David Barr David.Barr2@mclaneat.com:
I am trying to get policy to work in an Oracle Solaris 11 environment.
Trouble is it is pre-compiled, anyone know how I can use a policy
that didn't come with the OpenLDAP 2.4.30-0.175.1.0.0.24.0 ?
Run slapd -VVV in order to check the build in modules of slapd.
-Dieter
--
Dieter KlÃnter | Systemberatung
GPG Key ID:DA147B05
53Â37'09,95"N
10Â08'02,42"E
________________________________
CONFIDENTIALITY NOTICE: The information contained in this electronic mail (email) transmission (including attachments), is intended by MCLANE ADVANCED TECHNOLOGIES for the use of the named individual or entity to which it is addressed and may contain information that is privileged, confidential and/or protected as a trade secret. It is not intended for transmission to, or receipt by, any individual or entity other than the named addressee(s). If you have received this email in error, please delete it (including attachments) and any copies thereof without printing, copying or forwarding it, and notify the sender of the error by email reply immediately.
--On Wednesday, December 18, 2013 7:19 PM +0000 David Barr David.Barr2@mclaneat.com wrote:
Thank you, Perfec, Dieter. I cannot compile the OpenLDAP.org version. I have tried several suggested methods from internet to test the policy, none work as I get syntax error. Suggestions?
If it wasn't compiled with ppolicy suport, there is nothing to do other than build OpenLDAP fresh from source. You should avoid the 2.4.30 version anyway.
--Quanah
--
Quanah Gibson-Mount Architect - Server Zimbra, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
Am Wed, 18 Dec 2013 19:19:45 +0000 schrieb David Barr David.Barr2@mclaneat.com:
Thank you, Perfec, Dieter. I cannot compile the OpenLDAP.org version. I have tried several suggested methods from internet to test the policy, none work as I get syntax error. Suggestions?
Example: openldapwhoami -e ppolicy -X -D "cn=Manager,dc=$DC1,dc=$DC2" "uid=$U" ldapsearch -e ppolicy -D "uid=user02,ou=People,dc=training,dc=com" -W
Is there a command to see what policies are loaded via slapd.conf ?
As I mentioned already, slapd -VVV shows the static build in modules and backends. If ppolicy is not statically build in and not available as dynamic loadable module, which you may find in a library subdirectory, than there is no chance to implement a password policy. Just as an example:
/usr/lib/openldap> ./slapd -VVV @(#) $OpenLDAP: slapd 2.4.38
Included static overlays: ppolicy syncprov Included static backends: config ldif monitor bdb hdb ldap mdb relay
-Dieter
openldap-technical@openldap.org
-
David Barr -
Dieter Klünter -
Quanah Gibson-Mount