Set the password expiration date attribute to pwdChangedTime, set the valid-number-of-days attribute to pwdMaxAge:
https://github.com/Jasig/cas/blob/master/cas-server-support-ldap/src/main/java/org/jasig/cas/adaptors/ldap/lppe/PasswordPolicyConfiguration.java#L150 and: https://github.com/Jasig/cas/blob/master/cas-server-support-ldap/src/main/java/org/jasig/cas/adaptors/ldap/lppe/LPPEAuthenticationHandler.java#L198 Misagh ----- Original Message ----- From: "Andres" <afolg...@gmail.com> To: cas-dev@lists.jasig.org Sent: Friday, December 13, 2013 9:20:37 AM Subject: Re:[cas-dev] LPPE in CAS 4-RC2 with OpenLDAP Ok, I've finally managed. The problem were my build paths, I had to reconstruct the project. Next thing I'm facing... It looks like CAS LPPE is not ready to deal with OpenLDAP. For instance, it looks for a password expiration date attribute, but such thing doesn't exist in OpenLDAP. In OpenLDAP there's a pwdMaxAge attribute instead. You have to calculate pwdChangedTime + pwdMaxAge to find out if the password is expired. Is that right or I am missing something? -- You are currently subscribed to cas-dev@lists.jasig.org as: mmoay...@unicon.net To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
