We have a working environment with the only issue being that Password Policy State warnings, such as imminent password expiration warnings are not presented to the client. Based on the documentation found in Chapter 3.1.2 Password Policy Enforcement (http://download.oracle.com/docs/cd/E17904_01/doc.1111/e16454/install.htm#CHDBHIBA) it seems that PAM_LDAP does not pass state messages from ldap to client, so warnings such as password expiry are not presented to the client with the result being that once the password has expired the user can simply no longer login. Is this an accurate assessment of this configuration and if so is there a workaround to allow the ability to pass account State warnings?
Edited by: user714655 on Jan 31, 2011 2:38 PM
Edited by: user714655 on Jan 31, 2011 2:40 PM
Did you see the following links: