[Date Prev][Date Next] [Chronological] [Thread] [Top]

Applying individual password policies

To: <openldap-technical@openldap.org>
Subject: Applying individual password policies
From: Michael Starling <mlstarling31@hotmail.com>
Date: Thu, 21 Oct 2010 21:10:23 -0400
Importance: Normal

OPENLDAP 2.43

I have a default password policy working OK but I'd like to override the default policy for one individual.

I create the policy and add this LDIF without any problems.

dn: cn=user,ou=Policies,dc=mdvcat,dc=lott
cn: user
objectClass: pwdPolicy
objectClass: person
objectClass: top
sn: Password Policy
pwdAttribute: UserPassword
pwdMaxAge: 0
pwdLockout: FALSE
pwdMinLength: 10

I then try to apply the policy to a user with the following LDIF

dn: uid=ldapmgr,ou=people,dc=mdvcat,dc=lott
changetype: modify
add: pwdPolicySubentry
pwdPolicy: cn=user,ou=Policies,dc=mdvcat,dc=lott

I receive the following error.

ldapadd -f ldapmgr.ldif -x -D cn=root,dc=mdvcat,dc=lott -W
Enter LDAP Password:
modifying entry "uid=ldapmgr,ou=people,dc=mdvcat,dc=lott"
ldapadd: Undefined attribute type (17)
additional info: pwdPolicy: attribute type undefined

Any help would be appreciated

Thanks,

-Mike

Follow-Ups:
- Re: Applying individual password policies
  - From: Aravind M D <aravind.divakaran@yukthi.com>

Prev by Date: LDAP Schema Changes During Replication
Next by Date: Re: Applying individual password policies
Index(es):
- Chronological
- Thread