I made the config shown below, but when I locked an account via purposely failed bind attempts to one of the consumers, neither the supplier nor the other consumer got informed that the account was locked. Any ideas?
Thanks
The config:
====================
I ran this on the supplier and both consumers:
ldapmodify -h localhost -cax -D "cn=directory manager" -y ~/pword <<BYE
dn: cn=config
changetype: modify
add: passwordLockout
passwordLockout: on
-
add: passwordUnlock
passwordUnlock: on
-
add: passwordMaxFailure
passwordMaxFailure: 20
-
add: passwordLockoutDuration
passwordLockoutDuration: 3600
-
add: passwordResetFailureCount
passwordResetFailureCount: 600
BYE
And this on each of the 2 consumers:
ldapmodify -h localhost -D cn="Directory Manager" -y ~/pword <<BYE
dn: cn=config
changetype: modify
replace: passwordIsGlobalPolicy
passwordIsGlobalPolicy: on
BYE
--
Jon Detert
Sr. Systems Administrator
Infinity Healthcare
Milwaukee, Wisconsin
--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
No comments:
Post a Comment