Mike Jackson wrote: > Hi, > Tested with 7.1.2 and 1.0.2, same result. > > The Password Policy Request/Response Control does not work. I have > written code to test it, as well as tested it with an OpenLDAP 2.3 > client tool which supports sending the control request and decoding > the control response. Thanks. This is definitely a bug - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=184141 > > The control request is sent to the server, but it is not returned to > the client. > > I enabled the password syntax checking and then tried to change the > password to one which would obviously fail. > > Example test: > > ldappasswd \ > -a foobar \ > -s foo \ > -h directory.netauth.com \ > -D "uid=jacksonm,ou=users,dc=netauth,dc=com" \ > -x \ > -Z \ > -w foobar \ > -e ppolicy > > Result: Constraint violation (19) > Additional info: Failed to update password > > > This is only the error from the modify password operation, but > nothing from the password policy response. I expected a response > equivalent to the corresponsong ASN schema: "passwordTooShort". > > Is this a bug, or are there some secret switches to toggle to get the > password policy controls working? > > BR, -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3178 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.fedoraproject.org/pipermail/389-users/attachments/20060306/56afc1c6/attachment.bin
