[prev in list] [next in list] [prev in thread] [next in thread]
List: openldap-technical
Subject: Re: LastBind feature
From: Abdelkader Chelouah <a.chelouah () gmail ! com>
Date: 2024-02-08 15:58:30
Message-ID: a028058c-a5f8-454d-88a5-3317ab247f09 () gmail ! com
[Download RAW message or body]
The attribute *olcLastBindPrecisio**n* is not available for OpenLDAP
2.5, *pwdLastSuccess* is updated whenever a BIND operation is successful.
Regards
On 2/8/24 14:57, Jean-Luc Bourguignon wrote:
> Hello,
>
> Thx for your answer.
>
> I did not pay attention it was for 2.6x but why it's working in 2.5.16 as I've the \
> new attribut and it's updated as I wanted, only the precision is not set !! There \
> should be a default value or it's at each login by default??
> I was using the old overlay in 2.5.7 but I decided to move from it to source one \
> during upgrade to 2.5.16 as attributes aren't the same and on my production systems \
> it was not enabled yet then it will be ready to move to 2.6x without having to do \
> actions on old attribut to new one.
> Brgds,
> J-L.
>
>
>
> > On 8 Feb 2024, at 14:44, Abdelkader Chelouah<a.chelouah@gmail.com> wrote:
> >
> > On 2/8/24 14:39,bourguijl@gmail.com wrote:
> > > Dears,
> > >
> > > I'm running openldap 2.5.16 in which I'm using lastbind feature included in \
> > > source. To enable it, I read that 2 attributs should be inserted in DB config \
> > > file side, in which I added :
> > > olcLastBind: TRUE
> > > olcLastBindPrecision: 3600
> > >
> > > But it seems that olcLastBindPrecision isn't supported because when I did a \
> > > slapcat of the configuration of the ldap instance in which both are added, I \
> > > get following error message :
> > > UNKNOWN attributeDescription "OLCLASTBINDPRECISION" inserted.
> > >
> > > I removed it from my configuration and restarted the slapd then I discovered \
> > > that attribut "pwdLastSuccess" is well updated but I don't know with which \
> > > precision (default ??).
> > > So, my question is why this parameter isn't supported ? Is there something \
> > > else to enable ?
> > > Thx in advance,
> > > Jean-Luc.
> > Hello,
> >
> >
> > It is only supported starting from OpenLDAP 2.6. If you want to used this \
> > attribute with OpenLDAP 2.5, you have to switch to lastbind overlay.
> >
> > Regards
> >
[Attachment #3 (text/html)]
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<div class="moz-cite-prefix">The attribute <span
style="white-space: pre-wrap"><font \
face="monospace"><b>olcLastBindPrecisio</b></font><b><font \
face="monospace">n</font></b></span> is not available for OpenLDAP 2.5, <font \
face="monospace"><b>pwdLastSuccess</b></font> is updated whenever a BIND operation \
is successful.</div> <div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Regards<br>
</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">On 2/8/24 14:57, Jean-Luc Bourguignon
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:3554E3C9-2D2F-4BEB-B154-EC06AE35E1AF@gmail.com">
<pre class="moz-quote-pre" wrap="">Hello,
Thx for your answer.
I did not pay attention it was for 2.6x but why it's working in 2.5.16 as I've the \
new attribut and it's updated as I wanted, only the precision is not set !! There \
should be a default value or it's at each login by default??
I was using the old overlay in 2.5.7 but I decided to move from it to source one \
during upgrade to 2.5.16 as attributes aren't the same and on my production systems \
it was not enabled yet then it will be ready to move to 2.6x without having to do \
actions on old attribut to new one.
Brgds,
J-L.
</pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">On 8 Feb 2024, at 14:44, Abdelkader \
Chelouah <a class="moz-txt-link-rfc2396E" \
href="mailto:a.chelouah@gmail.com"><a.chelouah@gmail.com></a> wrote:
On 2/8/24 14:39, <a class="moz-txt-link-abbreviated" \
href="mailto:bourguijl@gmail.com">bourguijl@gmail.com</a> wrote: </pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">Dears,
I'm running openldap 2.5.16 in which I'm using lastbind feature included in source.
To enable it, I read that 2 attributs should be inserted in DB config file side, in \
which I added :
olcLastBind: TRUE
olcLastBindPrecision: 3600
But it seems that olcLastBindPrecision isn't supported because when I did a slapcat \
of the configuration of the ldap instance in which both are added, I get following \
error message :
UNKNOWN attributeDescription "OLCLASTBINDPRECISION" inserted.
I removed it from my configuration and restarted the slapd then I discovered that \
attribut "pwdLastSuccess" is well updated but I don't know with which precision \
(default ??).
So, my question is why this parameter isn't supported ? Is there something else to \
enable ?
Thx in advance,
Jean-Luc.
</pre>
</blockquote>
<pre class="moz-quote-pre" wrap="">
Hello,
It is only supported starting from OpenLDAP 2.6. If you want to used this attribute \
with OpenLDAP 2.5, you have to switch to lastbind overlay.
Regards
</pre>
</blockquote>
</blockquote>
<p><br>
</p>
</body>
</html>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic