On 3/12/21 5:20 PM, Benjamin Renard wrote: > In one of my OpenLDAP installation, I'm start using Ppolicy overlay and > it's doesn't allow me to store multiple passwords in userPassword > attribute as possible in regular situation.
What's your use-case? Up to now 100% of the concepts I saw relying on multiple user password were seriously flawed. > I'm looking for a solution > that allowing me to keep using Ppolicy and have possibility to store an > alternative user password (usually used by admins). Ouch! Many security regulations forbid especially this admin impersonation to arbitrary user accounts. And there are many good reasons for that. Ciao, Michael.
