Hi All,
I'm interested in your opinion about possibility of catching LDAP result
'2.16.840.1.113730.3.4.4' as MustChangePass condition.
I'm using CAS 3.5.1 with LPPE. Unfortunately I'm using RHDS :(
I have no problem with catching 'exceed password retry limit' error code:
Enter LDAP Password:
ldap_bind: Constraint violation (19)
additional info: Exceed password retry limit. Please try later.
The problem with catching 2.16.840.1.113730.3.4.4 is that, this is not error
code at all, but a result of search after binding - I can't use here LDAP
policy enforcement at LDAP server stage.
Is it possible in simple way to catch this result as LPPE condition
MustChangePass?
ldapsearch -h XXX -b XXX -D xxx -W
# search result
search: 2
result: 53 Server is unwilling to perform
control: 2.16.840.1.113730.3.4.4 false MA==
# numResponses: 1
Any ideas?
Thank you in advance.
/lm
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
