I have FDS 1.1.1 running with password policy and syntax checking working for user passwords via the console, but I haven't been able to get ldappasswd (from mozldap-tools package) to pay attention to those password constraints that I know work via the console. That is, ldappasswd succeeds even when given passwords that fail in the console. Is this what I should expect to see? AFAICS from looking at source code, manual pages etc, ldappasswd passes the plaintext password to the server to be encrypted and if that's the case then I'm assuming that password checks should be working. I understand that password checks can't be done if the userPassword attribute is modified directly, e.g. by ldapmodify. I get the feeling I'm missing something very basic, so any clarification would be greatly appreciated. -- Ross Johnson Unix Specialist, IT Infrastructure Insolvency and Trustee Service Australia Ph: +61 2 6270 3483 Fax: +61 2 6270 3413 Important: This transmission is intended only for the use of the addressee and may contain confidential or legally privileged information. If you are not the intended recipient, you are notified that any use or dissemination of this communication is strictly prohibited. If you have received this transmission in error, please notify immediately by telephone and delete all copies of this transmission, together with any attachments. -------------- next part -------------- A non-text attachment was scrubbed... Name: Ross_Johnson.vcf Type: text/x-vcard Size: 729 bytes Desc: not available Url : http://lists.fedoraproject.org/pipermail/389-users/attachments/20080903/3e3cd584/attachment.vcf