Re: Attribute pwdPolicySubentry

Am Sat, 19 Dec 2015 18:29:32 + schrieb Howard Chu : > Emmanuel Lecharny wrote: > > That makes sense. An even smarter system would use the > > administrative model to handle password policies. > > Yes. > > > > Le samedi 19 décembre 2015, > > a écrit : > > > >

Re: Attribute pwdPolicySubentry

Emmanuel Lecharny wrote: That makes sense. An even smarter system would use the administrative model to handle password policies. Yes. Le samedi 19 décembre 2015, mailto:ludovic.poi...@gmail.com>> a écrit : In my opinion, the pwdPolicySubentry attribute should be read-only generated

Re: Attribute pwdPolicySubentry

Otoh, making it user modifiable was a mistake and broke the rfc specification, which says it's a NO-USER-MODIFIABLE attribute. Le samedi 19 décembre 2015, a écrit : > In my opinion, the pwdPolicySubentry attribute should be read-only > generated by the server. > > We had made the error in Sun Di

Re: Attribute pwdPolicySubentry

That makes sense. An even smarter system would use the administrative model to handle password policies. Le samedi 19 décembre 2015, a écrit : > In my opinion, the pwdPolicySubentry attribute should be read-only > generated by the server. > > We had made the error in Sun Directory Server to allo

Re: Attribute pwdPolicySubentry

gt;>> when >>>>> viewing it in Apache Directory Studio, it still didn't show up -- that is >>>>> until I enabled Operational Attributes. >>>> Attribute 'pwdPolicySubentry' is somewhat special because it's not >>>> referenc

Re: Attribute pwdPolicySubentry

In my opinion, the pwdPolicySubentry attribute should be read-only generated by the server. We had made the error in Sun Directory Server to allow customers to set it manually, and it was very confusing that the attribute served 2 roles : a way to find the pwd policy entry applicable for the entry

Re: Attribute pwdPolicySubentry

t; until I enabled Operational Attributes. >> >> Attribute 'pwdPolicySubentry' is somewhat special because it's not >> referenced by >> any object class. You can simply add it to any entry. > > It is an operational attribute, so by definition, it can be added t

Re: Attribute pwdPolicySubentry

Michael Ströder wrote: Borresen, John - 0444 - MITLL wrote: Interesting! I was able to add it via command-line with ldapadd. But, when viewing it in Apache Directory Studio, it still didn't show up -- that is until I enabled Operational Attributes. Attribute 'pwdPolicySubentry&#x

RE: Attribute pwdPolicySubentry

Subject: Re: Attribute pwdPolicySubentry Borresen, John - 0444 - MITLL wrote: > Interesting! I was able to add it via command-line with ldapadd. But, when > viewing it in Apache Directory Studio, it still didn't show up -- that is > until I enabled Operational Attribut

Re: Attribute pwdPolicySubentry

Borresen, John - 0444 - MITLL wrote: > Interesting! I was able to add it via command-line with ldapadd. But, when > viewing it in Apache Directory Studio, it still didn't show up -- that is > until I enabled Operational Attributes. Attribute 'pwdPolicySubentry' is somew

RE: Attribute pwdPolicySubentry

ginal Message- From: openldap-technical [mailto:openldap-technical-boun...@openldap.org] On Behalf Of Angel L. Mateo Sent: Friday, December 18, 2015 2:13 AM To: openldap-technical@openldap.org Subject: Re: Attribute pwdPolicySubentry El 17/12/15 a las 19:19, Borresen, John - 0444 - MITLL esc

Re: Attribute pwdPolicySubentry

El 17/12/15 a las 19:19, Borresen, John - 0444 - MITLL escribió: Btw, I am seeing that error, when attempting to add the attribute "pwdPolicySubentry" to a specific user. I had this same problem when I make changes to this attribute with client Apache Directory Studio. Anyway, that

Re: Attribute pwdPolicySubentry

Borresen, John - 0444 - MITLL wrote: > Btw, I am seeing that error, when attempting to add the attribute > "pwdPolicySubentry" to a specific user. With which client are you trying this? Could you try to reproduce with ldapmodify command-line and post *exactly* what you'r

RE: Attribute pwdPolicySubentry

Btw, I am seeing that error, when attempting to add the attribute "pwdPolicySubentry" to a specific user. John D. Borresen (Dave) Ph: (781) 981-1609 Email: john.borre...@ll.mit.edu -Original Message- From: Michael Ströder [mailto:mich...@stroeder.com] Sent: Thursday, Decembe

RE: Attribute pwdPolicySubentry

...@stroeder.com] Sent: Thursday, December 17, 2015 11:46 AM To: Borresen, John - 0444 - MITLL; openldap-technical Subject: Re: Attribute pwdPolicySubentry Borresen, John - 0444 - MITLL wrote: > When trying to add the pwdPolicySubentry attribute, I receive the following: > "According to

Re: Attribute pwdPolicySubentry

Borresen, John - 0444 - MITLL wrote: > When trying to add the pwdPolicySubentry attribute, I receive the following: > "According to the schema attribute pwdPolicySubentry is not allowed." It works for me. Which component does produce this error message? Which OpenLDAP version ar

Attribute pwdPolicySubentry

licy module was configured with the DN of a default policy object and if that object exists, then the policy defined in that object is applied. When trying to add the pwdPolicySubentry attribute, I receive the following: "According to the schema attribute pwdPolicySubentry is not allowed.&quo

Re: attribute 'pwdPolicySubentry' cannot have multiple values

On Monday, 22 March 2010 12:40:47 Chris Jacobs wrote: > Howard, Tyler, Michael, > > My apologies: I take that back. The entry is indeed on the account - and > it is, in fact, a system attribute. > > I will endeavor to not reply to messages at 4am in the future - a bit too > quick on the /assum

RE: attribute 'pwdPolicySubentry' cannot have multiple values

one-man project. Thanks! - chris PS: I'd failed to reply-to-all on my previous emails. Please pardon my mailing list etiquette and use failure. :) From: Chris Jacobs Sent: Monday, March 22, 2010 4:12 AM To: Howard Chu Subject: RE: attribute '

Re: attribute 'pwdPolicySubentry' cannot have multiple values

Chris Jacobs wrote: > When I attempt to add the 'pwdPolicySubentry' attribute to a user account, I > get the error: > > Mar 19 22:51:24 ldapmaster1 slapd[8731]: Entry > (uid=chrisjtest,ou=people,dc=unix,dc=aptimus,dc=net), attribute > 'pwdPolicySubentry' c

Re: attribute 'pwdPolicySubentry' cannot have multiple values

tire db!). I'm now having an issue with one of the very last things: getting a password policy into effect. When I attempt to add the 'pwdPolicySubentry' attribute to a user account, I get the error: Mar 19 22:51:24 ldapmaster1 slapd[8731]: Entry (uid=chrisjtest,ou=people,dc=unix,d

Re: attribute 'pwdPolicySubentry' cannot have multiple values

ow having an issue with one of the very last things: getting a password policy into effect. When I attempt to add the 'pwdPolicySubentry' attribute to a user account, I get the error: Mar 19 22:51:24 ldapmaster1 slapd[8731]: Entry (uid=chrisjtest,ou=people,dc=unix,dc=aptimus

Re: attribute 'pwdPolicySubentry' cannot have multiple values

[8731]: Entry > (uid=chrisjtest,ou=people,dc=unix,dc=aptimus,dc=net), attribute > 'pwdPolicySubentry' cannot have multiple values Mar 19 22:51:24 > ldapmaster1 slapd[8731]: entry failed schema check: attribute > 'pwdPolicySubentry' cannot have multiple values [...]

attribute 'pwdPolicySubentry' cannot have multiple values

ting a password policy into effect. When I attempt to add the 'pwdPolicySubentry' attribute to a user account, I get the error: Mar 19 22:51:24 ldapmaster1 slapd[8731]: Entry (uid=chrisjtest,ou=people,dc=unix,dc=aptimus,dc=net), attribute 'pwdPolicySubentry' cannot h