We are looking at developing a way to have the CCA Agent notify users at log in
of eminent password
expiration. Out authentication mechanism is LDAP and we have LDAP attributes
for password expiration
date and number of remaining grace logins. However, given the limited boolean actions available for
LDAP attributes, I don't see a way to have the warning only appear, say, when the user's
password will expire in the next 7 days or the grace logins are below 5. Has
anyone else done
something similar? Any insight is appreciated.
Thanks!
--
Isabelle Graham
Information Security
American University
