Enabling ppolicy in openldap

Posted by nitins on Server Fault See other posts from Server Fault or by nitins
Published on 2011-11-29T08:54:38Z Indexed on 2011/11/29 9:52 UTC
Read the original article Hit count: 383

Filed under:
|
|
|

For enabling ppolicy is in Openldap I am trying to import the policy given below.

dn: ou=policies,dc=example,dc=in
ou: policies
objectClass: top
objectClass: organizationalUnit


# default, policies, example.in
dn: cn=default,ou=policies,dc=example,dc=in
objectClass: top
objectClass: device
objectClass: pwdPolicy
cn: default
pwdAttribute: userPassword
pwdMaxAge: 7776002
pwdExpireWarning: 432000
pwdInHistory: 0
pwdCheckQuality: 1
pwdMinLength: 8
pwdMaxFailure: 5
pwdLockout: TRUE
pwdLockoutDuration: 900
pwdGraceAuthNLimit: 0
pwdFailureCountInterval: 0
pwdMustChange: TRUE
pwdAllowUserChange: TRUE
pwdSafeModify: FALSE

But I am getting the error given below.

ldapadd -x -D "cn=Manager,dc=example,dc=in" -w xxxxxx -f /tmp/new-policy.ldif
adding new entry "cn=default,ou=policies,dc=example,dc=in"
ldapadd: Invalid syntax (21)
    additional info: pwdAttribute: value #0 invalid per syntax

Any idea on why I am getting the error ? I have already added the ppolicy schema and module in slapd.conf

© Server Fault or respective owner

Related posts about linux

Related posts about ldap