Solved

How to use ldapmodify to lock an ldap user account on Solaris 10?

Posted on 2009-05-08
5
1,800 Views
Last Modified: 2013-12-27
Does anyone know how to lock an ldap user account using ldapmodify?
This is an LDAP 6.2 client running Solaris 10.
I can see the pwdAccountLockedTime set to 000001010000Z after our threshold
of 5 invalid attempts has been met but I need a way to manually lock a user account.
I tried setting the pwdAccountLockedTime field but it is read only via ldapmodify.
Thanks for any help,
Mark
0
Comment
Question by:mmay5
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 22

Expert Comment

by:blu
ID: 24348939
I think that you have the right field. The problem is that you cannot modify it with ldapmodify. Clearly the field is
writable under the correct circumstances, since your pam policy is already changing it remotely. Perhaps you are
not binding with the proper creds in the ldapmodify?
0
 

Author Comment

by:mmay5
ID: 24354038
Yes, that is the frustrating part. The field is correct and the ldap manager password should allow me access but doesn't. I was hoping someone had done this before.
0
 
LVL 22

Expert Comment

by:blu
ID: 24354457
What directory server are you using?
0
 

Author Comment

by:mmay5
ID: 24358938
We are running Directory Server 6.2
0
 

Accepted Solution

by:
mmay5 earned 0 total points
ID: 25989579
Closing this. No solution found.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
A Stored Procedure in Microsoft SQL Server is a powerful feature that it can be used to execute the Data Manipulation Language (DML) or Data Definition Language (DDL). Depending on business requirements, a single Stored Procedure can return differe…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question