[Date Prev][Date Next] [Chronological] [Thread] [Top]

pwdExpirationWarned not present

To: openldap-technical@openldap.org
Subject: pwdExpirationWarned not present
From: Paul Lee <paul@hk.fujitsu.com>
Date: Thu, 17 Apr 2008 22:42:11 +0800
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)

Dear all,

I am using openldap 2.4.8 and testing with the pwdExpireWarning and the pwdMaxAge

I set the pwdExpireWarning = 100 and the pwdMaxAge = 120

Then, I preform a change in password operation. and wait for 20 seconds (120 - 100).

I then preform a Authentificaiton to the LDAP several times, I see from the log indicate that it now falls in the warning period (i.e. about to expire but not yet expired)

Apr 17 19:47:47 ldap0 slapd[7519]: ppolicy_bind: Setting warning for password expiry for cn=paul,ou=SCIG,ou=Govt-Dept,o=HKSARG = 96 seconds

However, when I retrieve the operational attributes for that user, I can't see the pwdExpirationWarned attribute.

How can I detect the user is in the "about to expire" state ?

Thanks

Confidential Communication - This e-mail (including any attachments) is confidential and may be legally privileged. If this e-mail has been sent to you by mistake please inform us by reply e-mail and then delete the e-mail, destroy any printed copy and do not disclose or use the information in it.

Follow-Ups:
- Re: pwdExpirationWarned not present
  - From: "Gavin Henry" <ghenry@suretecsystems.com>

Prev by Date: Re: openLDAP & memberof
Next by Date: Re: pwdExpirationWarned not present
Index(es):
- Chronological
- Thread