2012/8/29 cbulist <[email protected]>: > Hi, > > I got stuck with this problem. I'm able to change the user password using > shadowAccount objectClass but I can't do the same using pwdPolicy > objectClass. I set ppolicy attribute in order to get the password expired > message: > > pwdExpireWarning 10 > pwdMaxAge 15 > pwdMustChange TRUE > pwdAllowUserChange TRUE > pwdLockout TRUE > > > > slapd.conf: > > include /etc/openldap/schema/ppolicy.schema > > moduleload ppolicy.la > > access to attrs=userPassword > by self write > by users read > by anonymous auth > > access to * > by * read > > > > overlay ppolicy > ppolicy_default "cn=default,ou=policies,dc=sample,dc=com" > ppolicy_use_lockout > > > I really appreciate any help with this problem.
Can you show us all operational attributes from your user entry? Clément.
