Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
Showing results for 
Search instead for 
Did you mean: 

How to force openldap ppolicy in hpux ldap client

Occasional Contributor

How to force openldap ppolicy in hpux ldap client



We have configured openldap server running on rhel5.8 with ppolicy overlay.


We would like to know the settigns that are required at HPUX ldap client side to take these passwd policy effect.


Thanks & Regards,


Honored Contributor

Re: How to force openldap ppolicy in hpux ldap client

When a user is logging on to a LDAP-based account, the username and password is sent to the LDAP server for checking, and the LDAP server will decide whether to allow the user to log in or not. The checks related to the password policy are also done at the LDAP server: if the user supplied the correct password but the password is expired, the LDAP server can simply reject the login attempt, or tell the LDAP client system that the user can be allowed in but the password change procedure must be immediately started (forcing the user to change the expired password).


The LDAP client does not need to make any policy-related checks.

So, if you have successfully configured the HP-UX LDAP client to use LDAP-based user accounts, you don't have to do anything more.