StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POOpanLdap password policies
primarykey
Id
15203837
data
AcceptedAnswerId
0
AnswerCount
3
ClosedDate
CommentCount
3
CommunityOwnedDate
CreationDate
2013-03-04T14:28:36.367
FavoriteCount
1
LastActivityDate
2018-04-05T08:11:50.227
LastEditDate
2013-03-05T07:19:31.820
LastEditorUserId
1616814
OwnerUserId
1616814
ParentId
0
PostTypeId
1
Score
0
ViewCount
4798
LastEditorDisplayName
text
Body
I have installed the openldap version 2.4.23 on windows xp and using the apache DS as a client.I can authenticate users on a client server I set up for testing. My next step is to turn on a password policy. This is where things have gotten a bit hazy for me and I'm hoping someone can help me out. i added a password policy also by using the followin command ldapadd -x -c -f -D "cn=Manager,dc=maxcrc,dc=com" -w secret but after addition of password policies how do i make them in effect. The openldap documentation says the password policy module should be configured with the DN of the default policy. i added the following lines in slapd.conf file <pre><code># invokes password policies for this DIT only overlay ppolicy # Default ppolicy ppolicy_default "cn=passwordDefault,ou=policies,dc=maxcrc,dc=com" </code></pre> but somehow it is not getting loaded , i have already spent more a lot of time on this, but i am not getting the proper guide for the same. Can anyone shed some light on this in plain, layman's terms? Thanks in advance. My ldif file is as follows. <pre><code>dn: cn=passwordDefault,ou=policies,dc=localdomain,dc=com objectClass: pwdPolicy objectClass: person objectClass: top cn: passwordDefault sn: passwordDefault pwdAttribute: userPassword pwdCheckQuality: 1 pwdMinAge: 1 pwdMaxAge: 90 pwdMinLength: 6 pwdInHistory: 4 pwdMaxFailure: 3 pwdFailureCountInterval: 0 pwdLockout: TRUE pwdLockoutDuration: 0 pwdAllowUserChange: TRUE pwdExpireWarning: 604800 pwdGraceAuthNLimit: 3 pwdMustChange: TRUE pwdSafeModify: TRUE </code></pre> after adding this policy and restarting the server i tried changing the password of existing as well as newly added users. The server allows me to change the password to a string with length less than 6 whereas i have mentioned pwdMinLength: 6 in ldif. as well as i tried changing the password more than once , but it allows me to change the password to recently used password, whereas the pwdInHistory: 4 in ldif.
Tags
<openldap><ldap-query>
Title
OpanLdap password policies
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USDeepak Patil
UserOwnerUserId
1. USDeepak Patil
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POOpanLdap password policies
 UserUserId
 USammy
 VoteTypeVoteTypeId
 VTFavorite
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.