--On Monday, October 24, 2016 7:43 PM +0000 "Real, Elizabeth (392K)"
<[email protected]> wrote:
I setup a password policy overlay on my openldap 2.4.40 servers running
RHEL7. I need to enforce the following: disable accounts that have been
inactive for 180 days. In the past we were able to do this by simply
adding the shadowInactive attribute to each account: shadowInactive 180.
But with the new openldap, it appears there is no equivalent attribute??
OpenLDAP ppolicy has never supported that attribute, as far as I know. I
believe you are looking for the contrib nssov overlay, which does support
it.
Hope that helps!
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
