On 2/16/19 1:33 PM, Derek Zhou wrote: > With ppolicy, can a user change his password after his password expired?
Yes. This feature is called grace logins and the possibe LDAP operations are very limited (e.g. no search). See description for attribute 'pwdGraceAuthnLimit' in man-page slapo-ppolicy(5). Ciao, Michael.
smime.p7s
Description: S/MIME Cryptographic Signature
