From be1697216fc62578c00606458b0ff390c575ef67 Mon Sep 17 00:00:00 2001 From: Sumit Bose Date: Mon, 16 Nov 2009 13:56:57 +0100 Subject: Add ldap_pwd_policy option --- server/man/sssd-ldap.5.xml | 33 +++++++++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) (limited to 'server/man') diff --git a/server/man/sssd-ldap.5.xml b/server/man/sssd-ldap.5.xml index a2aa7306..d944392f 100644 --- a/server/man/sssd-ldap.5.xml +++ b/server/man/sssd-ldap.5.xml @@ -582,6 +582,39 @@ + + ldap_pwd_policy (string) + + + Select the policy to evaluate the password + expiration on the client side. The following values + are allowed: + + + none No evaluation on the + client side. This option cannot disable server side + password policies. + + + shadow use + shadow + 5 style + attributes to evaluate if the password is expired. + Please note that the current version of sssd cannot + update this attribute during a password change. + + + mit_kerberos use the attributes + used by MIT Kerberos to evaluate if the password is + expired. Use chpass_provider=krb5 to update these + attributes when the password is changed. + + + Default: none + + + + -- cgit