Re: Dealing with disabled/expired user account authentication

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Arthur de Jong <arthur [at] arthurdejong.org>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: Dealing with disabled/expired user account authentication
Date: Wed, 16 Feb 2011 20:48:39 +0100

On Wed, 2011-02-16 at 11:33 +0530, Vinay Kalkoti wrote:
> When I used OpenLDAP, I had to set the filters explicitly for the
> mapped principal. I am not sure if OpenLDAP does a bind with the user
> account that is used for authentication.

For OpenLDAP the application explicitly has to request password policy
controls. This has not yet been implemented in nss-pam-ldapd.

Some background can be found here:
  http://lists.arthurdejong.org/nss-pam-ldapd-users/2010/msg00179.html

Patches are more than welcome ;)

-- 
-- arthur - arthur@arthurdejong.org - http://arthurdejong.org --

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users

Dealing with disabled/expired user account authentication, Vinay Kalkoti
- Re: Dealing with disabled/expired user account authentication, Arthur de Jong

Prev by Date: Re: non-local (LDAP) users can log in without auth???
Next by Date: Re: Map limit to map base option
Previous by thread: Dealing with disabled/expired user account authentication
Next by thread: Map limit to map base option