Prashant Bapat wrote:

I'm using FreeIPA's LDAP component as user database in another
application. The binds happen using the user's credentials
(password+otp) and the search happens by a service account created under

Things are working as expected except one small hitch. Password Expiry.
Binds are allowed even for users with expired passwords.

Are others using the LDAP directly ? If yes, how are you handing the
password expiry.


There is a bit of a chicken and egg problem, see


Manage your subscription for the Freeipa-users mailing list:
Go to for more info on the project

Reply via email to