[Date Prev][Date Next] [Chronological] [Thread] [Top]

Applying individual password policies



OPENLDAP 2.43

I have a default password policy working OK but I'd like to override the default policy for one individual.

I create the policy and add this LDIF without any problems.

dn: cn=user,ou=Policies,dc=mdvcat,dc=lott
cn: user
objectClass: pwdPolicy
objectClass: person
objectClass: top
sn: Password Policy
pwdAttribute: UserPassword
pwdMaxAge: 0
pwdLockout: FALSE
pwdMinLength: 10




I then try to apply the policy to a user with the following LDIF


dn: uid=ldapmgr,ou=people,dc=mdvcat,dc=lott
changetype: modify
add: pwdPolicySubentry
pwdPolicy: cn=user,ou=Policies,dc=mdvcat,dc=lott


I receive the following error.

ldapadd -f ldapmgr.ldif -x -D cn=root,dc=mdvcat,dc=lott -W
Enter LDAP Password:
modifying entry "uid=ldapmgr,ou=people,dc=mdvcat,dc=lott"
ldapadd: Undefined attribute type (17)
        additional info: pwdPolicy: attribute type undefined



Any help would be appreciated

Thanks,

-Mike