Greetings.
What is the best wat to store user disk quotas on LDAP. I got two (and
there will be more) servers running and both will authenticate on LDAP.
What are the best ways to manage user quotas with LDAP?
--
Att.*
***
Luis H. Forchesatto
I am trying to "extend" a corporate Active Directory with application-specific
user attributes by running a local OpenLDAP (2.4.34) with back-ldap and the
translucent overlay. I can add local attributes associated with remote entries,
and I can see these local attributes when searching on a remo
* Do not use rootdn account to test ppolicy (rootdn bypass ppolicy)
- i have a service account setup in /etc/pam_ldap.conf.
What should the proper acl be for this?
* Do not hash password before modifying it (password in SSHA cannot be
verified against min size for example)
- Ah. i'll change that
2013/4/10 D C
> Fair enough. now I'm updated
> $ rpm -qa |grep openldap
> openldap-ltb-2.4.35-1.el6.x86_64
> openldap-ltb-check-password-1.1-8.el6.x86_64
>
> I dumped and reimported my database, and tried agian. I dont see any
> difference.
>
> TESTS: RESULT:
>
> pwdSafeMod
Fair enough. now I'm updated
$ rpm -qa |grep openldap
openldap-ltb-2.4.35-1.el6.x86_64
openldap-ltb-check-password-1.1-8.el6.x86_64
I dumped and reimported my database, and tried agian. I dont see any
difference.
TESTS: RESULT:
pwdSafeModify: FALSEPASS: Message:
2013/4/10 D C
> Here are my results.. Any thoughts as to why this is not working?
> As for my ldap version, I'm using the version provided in CentOS 6. I
> would prefer to use these prepacked builds whenever possible. If there is
> an issue where this will not work on that version, then I'll
--On Wednesday, April 10, 2013 11:37 AM -0400 D C wrote:
Here are my results.. Any thoughts as to why this is not working?
As for my ldap version, I'm using the version provided in CentOS 6. I
would prefer to use these prepacked builds whenever possible. If there
is an issue where this w
Here are my results.. Any thoughts as to why this is not working?
As for my ldap version, I'm using the version provided in CentOS 6. I
would prefer to use these prepacked builds whenever possible. If there is
an issue where this will not work on that version, then I'll go ahead and
upgrade.
--On Wednesday, April 10, 2013 9:30 AM -0400 D C wrote:
Server is openldap 2.4.23
Seriously? You're using a version of OpenLDAP that is nearly 3 years old?
Why would you do that to yourself?
--Quanah
--
Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware
My mistake. I've had password policies on my mind so much lately, that I
have been mostly focusing on the password strength portion of it, which I
realize is not part of ppolicy itself.
I'm going through each attribute right now to do a thorough test of what is
working and / or not working.
Serv
2013/4/10 D C
> I
> have tried using ppolicy, but it is not really doing anything.
> I can confirm that my policy is being used by flipping the "pwdSafeModify"
> attribute.
>
> When set to true, users cannot change their password and they get a
> message saying that they need to send both the ol
I
have tried using ppolicy, but it is not really doing anything.
I can confirm that my policy is being used by flipping the "pwdSafeModify"
attribute.
When set to true, users cannot change their password and they get a
message saying that they need to send both the old and new password
together
2013/4/10 D C
> After nearly two weeks of going nuts trying to setup a password policy, I
> finally found part of the documentation that I was missing. Apparently
> "ppolicy" does not actualy enforce the policy you create. If I'm
> understanding the documentation correctly, it really only provi
Hi,
while trying to submit a (small) patch on ftp.openldap.org, I got "No
space left on device". I guess there is some cleanup to do somewhere...
Claude
After nearly two weeks of going nuts trying to setup a password policy, I
finally found part of the documentation that I was missing. Apparently
"ppolicy" does not actualy enforce the policy you create. If I'm
understanding the documentation correctly, it really only provides more of
a transport
Dear list,
I am trying to add an OpenIndiana 151a7 machine as an LDAP client
of an Ubuntu 12.04.1 server with slapd version as shipped with it:
# slapd -V
@(#) $OpenLDAP: slapd (Oct 17 2012 19:48:41) $
buildd@komainu:/build/buildd/openldap-2.4.28/debian/build/servers/slapd
On the OI c
16 matches
Mail list logo
