We have 389DS as our main directory server, and we use it with many applications.
recently we moved our mail application to Zimbra. Zimbra can use an external LDAP server for authentication, and we did configure that and it works.
In 389DS, in password policy configuration, there is the check-box to force a user to change his password on the first login, we did try it but, without success.
Could this parameter be used to force users to change their passwords?