--On Thursday, July 25, 2013 3:17 PM +1000 Brian May <br...@microcomaustralia.com.au> wrote:

The original bug reporter said "The newer version included several added
attributes (PWDCHANGEDTIME, PWDHISTORY, PWDFAILURETIME, PWDGRACEUSETIME)
which are needed e.g. by GoSA."


However if I look for these, they are commented out.

I would advise you take the time to read the ppolicy.c source file, which defines these attributes. This means any time the ppolicy module is loaded, they are present. If you don't find them in your server schema, then you've failed to correctly load the ppolicy module.

} pwd_OpSchema[] = {
       {       "( 1.3.6.1.4.1.42.2.27.8.1.16 "
               "NAME ( 'pwdChangedTime' ) "
               "DESC 'The time the password was last changed' "
               "EQUALITY generalizedTimeMatch "
               "ORDERING generalizedTimeOrderingMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 "
"SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
               &ad_pwdChangedTime },
       {       "( 1.3.6.1.4.1.42.2.27.8.1.17 "
               "NAME ( 'pwdAccountLockedTime' ) "
               "DESC 'The time an user account was locked' "
               "EQUALITY generalizedTimeMatch "
               "ORDERING generalizedTimeOrderingMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 "
               "SINGLE-VALUE "
#if 0
               /* Not until Relax control is released */
               "NO-USER-MODIFICATION "
#endif
               "USAGE directoryOperation )",
               &ad_pwdAccountLockedTime },
       {       "( 1.3.6.1.4.1.42.2.27.8.1.19 "
               "NAME ( 'pwdFailureTime' ) "
"DESC 'The timestamps of the last consecutive authentication failures' "
               "EQUALITY generalizedTimeMatch "
               "ORDERING generalizedTimeOrderingMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 "
               "NO-USER-MODIFICATION USAGE directoryOperation )",
               &ad_pwdFailureTime },
       {       "( 1.3.6.1.4.1.42.2.27.8.1.20 "
               "NAME ( 'pwdHistory' ) "
               "DESC 'The history of users passwords' "
               "EQUALITY octetStringMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 "
               "NO-USER-MODIFICATION USAGE directoryOperation )",
               &ad_pwdHistory },
       {       "( 1.3.6.1.4.1.42.2.27.8.1.21 "
               "NAME ( 'pwdGraceUseTime' ) "
"DESC 'The timestamps of the grace login once the password has expired' "
               "EQUALITY generalizedTimeMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 "
               "NO-USER-MODIFICATION USAGE directoryOperation )",
               &ad_pwdGraceUseTime },
       {       "( 1.3.6.1.4.1.42.2.27.8.1.22 "
               "NAME ( 'pwdReset' ) "
               "DESC 'The indication that the password has been reset' "
               "EQUALITY booleanMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 "
               "SINGLE-VALUE USAGE directoryOperation )",
               &ad_pwdReset },
               "NAME ( 'pwdPolicySubentry' ) "
               "DESC 'The pwdPolicy subentry in effect for this object' "
               "EQUALITY distinguishedNameMatch "
               "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 "
               "SINGLE-VALUE "
#if 0
               /* Not until Relax control is released */
               "NO-USER-MODIFICATION "
#endif
               "USAGE directoryOperation )",
               &ad_pwdPolicySubentry },
       { NULL, NULL }



--Quanah



--

Quanah Gibson-Mount
Lead Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to