Thanks Patrick. It helped me to very much extend but again getting stuck in pushing password policy on openldap. I got stuck in 2.4.23 and upgraded to 2.4.39. But still it is an issue.
test 1: Changing the password of user without meeting pwdMinLength attribute. But test got failed. ldappasswd -x -W -D "cn=Manager,dc=example,dc=com" -H ldaps://xxx-xxx-xxx.example.com -s new -a Welcome123 "uid=tuser,ou=Users,dc=example,dc=com" Enter LDAP Password: [root@xxx-xxx-xxx openldap]# Ploicy is as follow: # Policies, j.cinglevue.com dn: ou=Policies,dc=j,dc=cinglevue,dc=com ou: Policies description: Directory policies. objectClass: organizationalUnit # Standard, Policies, j.cinglevue.com dn: cn=Standard,ou=Policies,dc=j,dc=cinglevue,dc=com objectClass: top objectClass: device objectClass: pwdPolicy cn: Standard pwdAttribute: userPassword pwdMaxAge: 2592000 pwdCheckQuality: 1 pwdMinLength: 8 pwdExpireWarning: 432000 pwdGraceAuthNLimit: 3 pwdLockout: TRUE pwdLockoutDuration: 1800 pwdMaxFailure: 3 pwdFailureCountInterval: 0 pwdMustChange: TRUE pwdAllowUserChange: TRUE pwdSafeModify: TRUE Not able to found ppolicy.la in my system but copied the same from previous version. Hope that id not effecting. Regards sam On Friday, 7 March 2014 12:48 AM, Patrick Laimbock <[email protected]> wrote: On 06-03-14 05:06, saurabh ohri wrote: [snip] > > really shock to see that there is no proper document for the Documentation like the Admin Guide, the man pages and the FAQ are all easily available on openldap.org: http://www.openldap.org/doc/ http://www.openldap.org/software/man.cgi http://www.openldap.org/faq/data/cache/1.html > installation and configuration. 2.4.39 have to be configured from source > and not rpm so facing hell lot of issue. Installation instructions are in the OpenLDAP source INSTALL file: http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=blob;f=INSTALL;h=737fee6cd73ff7934981be38b445ca7e427f5ddd;hb=refs/heads/OPENLDAP_REL_ENG_2_4 If you need RPMs, did you Google or search the list archives where it's mentioned many times? The LTB Project maintains OpenLDAP RPM packages: http://tools.ltb-project.org/news/46 And Symas provides OpenLDAP RPM packages and services for the Enterprise: https://symas.com/products/symas-openldap-directory/ Cheers, Patrick
