On Sun, 2019-09-22 at 01:01 +0900, Marc Dequènes wrote: > As I can see this part of the code did not change in 0.9.10.
Hi Marc, Sorry for not responding sooner. There are two nslcd implementations: nslcd and pynslcd. The pynslcd implementation is more experimental and does not handle pam_authc_ppolicy properly. The nslcd implementation for which you filed the bug should handle the option properly, e.g. see https://arthurdejong.org/git/nss-pam-ldapd/tree/nslcd/myldap.c#n587 This option has been in nss-pam-ldapd since 0.9.7 so if you are seeing this with nslcd, could you report the exact error your LDAP server is logging? The pynslcd implementation does not yet support this in a released version but I just pushed a fix to Git: https://arthurdejong.org/git/nss-pam-ldapd/commit/?id=fea0f5e Thanks, -- -- arthur - art...@arthurdejong.org - https://arthurdejong.org/ --
signature.asc
Description: This is a digitally signed message part
