Re: ppolicy configuration

[Emmanuel Lécharny <el...@gmail.com>]

Le 10/03/15 08:06, Angel L. Mateo a écrit :
>
> El 09/03/15 a las 12:10, Igor Shmukler escribió:
>> I also have an LDIF for default policy, added as: $ldapadd -x -D
>> cn=admin,dc=example,dc=com -W -f default_ppolicy.ldif
>>
>> It contains:
>> dn: ou=policies,dc=example,dc=com
>> objectClass: top
>> objectClass: organizationalUnit
>> ou: policies
>>
>> dn: cn=ppolicy,ou=policies,dc=example,dc=com
>> objectClass: top
>> objectClass: device
>> objectClass: pwdPolicyChecker
>> objectClass: pwdPolicy
>> cn: ppolicy
>> pwdAttribute: userPassword
>
>     I think the problem is the pwdAttribute attribute in your ldif.
> Although in examples is shown as you have, in my case I had to put the
> OID of the userPassword, not the "userPassword" string.

That would be a bug. Both the OID or the 'userPassword' string should
work (case insensitive)

Re: ppolicy configuration

[Emmanuel Lécharny <el...@gmail.com>]

Ignore this mail, wrong mailing list (it was for OpenLDAP)


Le 10/03/15 09:04, Emmanuel Lécharny a écrit :
> Le 10/03/15 08:06, Angel L. Mateo a écrit :
>> El 09/03/15 a las 12:10, Igor Shmukler escribió:
>>> I also have an LDIF for default policy, added as: $ldapadd -x -D
>>> cn=admin,dc=example,dc=com -W -f default_ppolicy.ldif
>>>
>>> It contains:
>>> dn: ou=policies,dc=example,dc=com
>>> objectClass: top
>>> objectClass: organizationalUnit
>>> ou: policies
>>>
>>> dn: cn=ppolicy,ou=policies,dc=example,dc=com
>>> objectClass: top
>>> objectClass: device
>>> objectClass: pwdPolicyChecker
>>> objectClass: pwdPolicy
>>> cn: ppolicy
>>> pwdAttribute: userPassword
>>     I think the problem is the pwdAttribute attribute in your ldif.
>> Although in examples is shown as you have, in my case I had to put the
>> OID of the userPassword, not the "userPassword" string.
> That would be a bug. Both the OID or the 'userPassword' string should
> work (case insensitive)
>