Password policy

author: Guilhem Moulin <guilhem.moulin@fripost.org> 2013-01-30 20:28:47 +0100
committer: Guilhem Moulin <guilhem.moulin@fripost.org> 2013-01-30 20:47:02 +0100
commit: c4b39c091e413d196112a94352654a4803ed3c84 (patch)
tree: 877c4647221dfa2483f0ad2c5bfa33b96abdedf7 /ldap/ppolicy.ldif
parent: 73c7ba4d856553706528bf2a3ae91a82fa121c10 (diff)
1 files changed, 26 insertions, 0 deletions
diff --git a/ldap/ppolicy.ldif b/ldap/ppolicy.ldif
new file mode 100644
index 0000000..60b52aa
--- /dev/null
+++ b/ldap/ppolicy.ldif
@@ -0,0 +1,26 @@
+# Load this file with
+#
+#   ldapadd -Y EXTERNAL -H ldapi:/// -f ppolicy.ldif
+#
+# It will load the "ppolicy" overlay configuration for the database #1.
+# Ensure that it's indeed the database #1 that you want to configure:
+#
+#   ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// -b "cn=config" "olcSuffix=o=mailHosting,dc=fripost,dc=dev" dn
+#
+# Note: There is no clean way to remove/replace overlays, other than
+# stopping slapd and digging into the slapd.d directory:
+#   http://www.zytrax.com/books/ldap/ch6/slapd-config.html#use-overlays
+#
+#
+# References:
+# - http://www.openldap.org/doc/admin24/overlays.html#Password%20Policies
+# - http://www.zytrax.com/books/ldap/ch6/ppolicy.html
+# - man 5 slapo-ppolicy
+
+
+dn: olcOverlay=ppolicy,olcDatabase={1}hdb,cn=config
+objectClass: olcOverlayConfig
+objectClass: olcPPolicyConfig
+olcPPolicyDefault: cn=ppolicy,o=mailHosting,dc=fripost,dc=dev
+olcPPolicyHashCleartext: TRUE
+olcPPolicyUseLockout: FALSE
author	Guilhem Moulin <guilhem.moulin@fripost.org>	2013-01-30 20:28:47 +0100
committer	Guilhem Moulin <guilhem.moulin@fripost.org>	2013-01-30 20:47:02 +0100
commit	c4b39c091e413d196112a94352654a4803ed3c84 (patch)
tree	877c4647221dfa2483f0ad2c5bfa33b96abdedf7 /ldap/ppolicy.ldif
parent	73c7ba4d856553706528bf2a3ae91a82fa121c10 (diff)