[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Password Expiry/Controls?



Hi Elmo

Don't know if you are using Apache as the web server connecting
through to openldap, but if you are, there is a module called
mod_authz_ldap (http://authzldap.othello.ch/index.html) which not only
includes basic and certificate authentication but also has a password
expiration feature... not sure if that's exactly what you are looking
for.

Cheers
Jose


-----Original Message-----
From: E M Recio [mailto:erecio@storm.jmc.tju.edu]
Sent: 10 September 2002 05:45
To: Kervin L. Pierre
Cc: openldap-software@OpenLDAP.org
Subject: Re: Password Expiry/Controls?


Kervin L. Pierre wrote:

>
> This needs to be handled by the OS.

That would be nice, but we're already using it for 29,000 users in a 
single sign-on solution. This means, that every windoze box is
auth'ing 
against it, and email, web portal everything else... it would be nice 
for the OpenLDAP to actually require it. :( Oh, well, back to the 
drawing board. It'll probably mean a java servlet connection pooling
in 
front of the ldap server, having java doing the 'math' for the
password 
authentication.

-Elmo