Todor, All you need to do is request the passwordexpirationtime attribute from the user entry:
For example: # ldapsearch -D "cn=directory manager" -W -b "dc=domain,dc=com" uid=USERID passwordexpirationtime Regards, Mark On 11/03/2016 03:10 AM, Todor Petkov wrote: > Hello, > > I am trying to get the user password expiration date, so I can write a > script to send warning email before this. I am running the following: > ldapsearch -v -LLLx -h localhost -b > 'cn="cn=nsPwPolicyEntry,uid=user,ou=People,dc=domain,dc=com",cn=nsPwPolicyContainer,ou=People,dc=domain,dc=com' > "(objectclass=ldapsubentry)" > > But I don't see such attribute in the results. Can you give me a hint > what's the ldap query? My versions are: > > 389-admin-console-1.1.8-1.el6.noarch > 389-ds-1.2.2-1.el6.noarch > 389-adminutil-1.1.19-1.el6.x86_64 > 389-ds-base-libs-1.2.11.15-75.el6_8.x86_64 > 389-ds-base-1.2.11.15-75.el6_8.x86_64 > 389-ds-console-1.2.6-1.el6.noarch > 389-admin-console-doc-1.1.8-1.el6.noarch > 389-admin-1.1.35-1.el6.x86_64 > 389-console-1.1.7-1.el6.noarch > 389-ds-console-doc-1.2.6-1.el6.noarch > 389-dsgw-1.1.11-1.el6.x86_64 > > > Thanks in advance, > _______________________________________________ > 389-users mailing list -- [email protected] > To unsubscribe send an email to [email protected]
_______________________________________________ 389-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
