e of nsswitch.conf, configure
ppolicy on the LDAP server, and ensure PAM is setup correctly to enforce
password expiration via ppolicy.
Then, even if users never login to a shell on a server configured for LDAP,
they will be locked out of all other LDAP-using services (except for WiFi
access po
by self write
by * read
Thank you for your response.
On 04/03/2012 12:43 PM, Jonathan Clarke wrote:
Hi Cris,
On 27/03/12 00:46, Collins, Cris L. wrote:
I am running OpenLDAP as packaged for CentOS 5 and having problems with
password expiration.
Users are being told every time t
Hi Cris,
On 27/03/12 00:46, Collins, Cris L. wrote:
> I am running OpenLDAP as packaged for CentOS 5 and having problems with
> password expiration.
> Users are being told every time they login that their password has expired
> and to change their password. When ShadowMax is chan
I am running OpenLDAP as packaged for CentOS 5 and having problems with
password expiration.
Users are being told every time they login that their password has expired
and to change their password. When ShadowMax is changed to 9 their
passwords are not expiring. The preferable setting is 90
On Friday, 3 September 2010 13:15:21 Dannie Obbink wrote:
> Forwarded Message
>
> > From: Obbink, D. (Dannie)
> > To: openldap-technical@openldap.org
> > Subject: PAM not warning for password expiration
> > Date: Thu, 22 Jul 2010 19:29:36 +02
Forwarded Message
> From: Obbink, D. (Dannie)
> To: openldap-technical@openldap.org
> Subject: PAM not warning for password expiration
> Date: Thu, 22 Jul 2010 19:29:36 +0200
>
> When users with an expired account try to log on to an application
> making a
Hello list,
First of all; sorry if this is on the wrong list, reaches the wrong
people, has been asked 1000 times before, or is just a basic or stupid
question. Yes, I have searched Google and the mailing list archives.
We (succesfully) implemented ppolicy on our 2.4.22 OpenLDAP server.
Passwor
;>>> We are currently looking into implementing password expirations
>>>> (pwdMaxAge) along with password expiration warnings (pwdExpireWarning)
>>>> so that email notifications may be sent to those offending entries via a
>>>> cronjob run as the admin
On Monday, 15 March 2010 18:50:10 Tyler Gates wrote:
> On 03/15/2010 07:06 AM, Buchan Milne wrote:
> > On Saturday, 13 March 2010 01:17:19 Tyler Gates wrote:
> >> Hi Guys,
> >> We are currently looking into implementing password expirations
> >> (pwdMa
On 03/15/2010 07:06 AM, Buchan Milne wrote:
> On Saturday, 13 March 2010 01:17:19 Tyler Gates wrote:
>
>> Hi Guys,
>> We are currently looking into implementing password expirations
>> (pwdMaxAge) along with password expiration warnings (pwdExpireWarning)
>> s
.@openldap.
org] On Behalf Of Buchan Milne
Sent: Monday, March 15, 2010 6:06 AM
To: openldap-technical@openldap.org
Cc: Tyler Gates
Subject: Re: detecting password expiration warnings by admin
On Saturday, 13 March 2010 01:17:19 Tyler Gates wrote:
> Hi Guys,
> We are currently looking i
On Saturday, 13 March 2010 01:17:19 Tyler Gates wrote:
> Hi Guys,
> We are currently looking into implementing password expirations
> (pwdMaxAge) along with password expiration warnings (pwdExpireWarning)
> so that email notifications may be sent to those offending entries via a
&
Hi Guys,
We are currently looking into implementing password expirations
(pwdMaxAge) along with password expiration warnings (pwdExpireWarning)
so that email notifications may be sent to those offending entries via a
cronjob run as the admin (or some other ACL user). The problem is, if I
13 matches
Mail list logo