centos7_openldap_ppolicy
This is an old revision of the document!
~~TOC~~
CentOS 7 - OpenLDAP 2.4 password policy (ppolicy)
Configure Provider (master) and consumer (slave)
- Load the ppolicy schema:
# ldapadd -H ldaps://<FQDN> -x -D "cn=Manager,dc=domain,dc=tld" -W -f /etc/openldap/schema/ppolicy.ldif
- Load the module:
# ldapadd -H ldaps://<FQDN> -x -D "cn=Manager,dc=domain,dc=tld" -W <<EOF dn: cn=module,cn=config objectClass: olcModuleList cn: module olcModulePath: /usr/lib64/openldap olcModuleLoad: ppolicy.la EOF
- Add the overlay:
# ldapadd -H ldaps://<FQDN> -x -D "cn=Manager,dc=domain,dc=tld" -W <<EOF dn: olcOverlay=ppolicy,olcDatabase={2}hdb,cn=config objectClass: olcPPolicyConfig olcPPolicyDefault: cn=ppolicy,ou=policies,dc=domain,dc=tld EOF
centos7_openldap_ppolicy.1442309929.txt.gz · Last modified: 2015/09/15 09:38 by admin