[389-users] pwdUpdateTime when password policies are applied.
Mark Reynolds
mareynol at redhat.com
Fri Sep 28 15:58:35 UTC 2012
Juan,
There is a work around to get it working on 1.2.11.15. You need to add
these attributes to the "cn=cn=nsPwPolicyEntry, dc=example,dc=com" or
whatever subtree you added the policy to:
objectclass: extensibleObject
passwordTrackUpdateTime: on
In 1.2.11.16 this attribute will be added to the schema, so
"objectclass: extensibleObject" will not be required. It will also
check the main config, and correctly enable this setting for
subtree/user password policies. You will also be able to turn it off
for subtree/user policies if you so desire.
Regards,
Mark
On 09/28/2012 11:14 AM, Mark Reynolds wrote:
> Juan,
>
> I did reproduce the problem. If you setup a subtree policy through
> the console, it doesn't pull in the config setting. I'll file the ticket.
>
> Mark
>
> On 09/28/2012 07:09 AM, Juan Carlos Camargo wrote:
>> I've installed 10.2.11.15 on a lab machine (fedora17) and set
>> passwordTrackUpdateTime to on in config. This is the first time I'm
>> testing this feature, I dont know if this also happens in former
>> 10.2.11x versions. I've noticed that whenever a password policy is
>> applied to an user, either directly or inherited from branch/ou, the
>> pwdUpdateTime stops updating upon password changes. If I remove the
>> password policy then the attribute works as expected. Is this the
>> correct behaviour?
>>
>> Regards.
>> JC.
>>
>> --
>>
>> ------------------------------------------------------------------------
>>
>> Juan Carlos Camargo Carrillo
>>
>> 957-211157 <callto:957-211157> , 650932877 <callto:650932877>
>>
>>
>>
>>
>> --
>> 389 users mailing list
>> 389-users at lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
> --
> Mark Reynolds
> Red Hat, Inc
> mreynolds at redhat.com
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
--
Mark Reynolds
Red Hat, Inc
mreynolds at redhat.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20120928/c0118cc9/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/jpeg
Size: 3538 bytes
Desc: not available
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20120928/c0118cc9/attachment.jpe>
More information about the 389-users
mailing list