Prashant Bapat wrote:
Hi,
I'm using FreeIPA's LDAP component as user database in another
application. The binds happen using the user's credentials
(password+otp) and the search happens by a service account created under
cn=sysaccounts.
Things are working as expected except one small hitch. Password Expiry.
Binds are allowed even for users with expired passwords.
Are others using the LDAP directly ? If yes, how are you handing the
password expiry.
Thanks.
--Prashant
There is a bit of a chicken and egg problem, see
https://fedorahosted.org/freeipa/ticket/1539
rob
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project