Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Has anyone gotten this to work? I have been pulling my hair out trying to get it to work. I can see the policy being accessed in the logs but it doesn't seem to take.
I created an olc config using this slapd.conf:
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/ppolicy.schema
I've been using it successfully on a mix of Debian, Ubuntu, and Scientific Linux systems. Have you defined your DN "cn=default,ou=policies,dc=mydomain,dc=local"? What is the definition of the policy? What do you mean by "it doesn't seem to take"?
At my site, what I do is define a ppolicy_subentry pointing to the appropriate DN within every user DN. I've never tried specifying a default policy entry, and I'm not sure if that works. You might try explicitly setting the ppolicy_subentry for a test user and see if that works.
Thanks for the reply! This is the only life line I've been thrown. Yes, I did define "cn=default,ou=policies,dc=mydomain,dc=local". Here is the policy:
I've tried this with and without the pwdPolicy objectClass being added and I've basically been testing password length. It accepts anything of 6 character or more.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.