OpenLdap How to disable/enable/remove user account

ldap openldap
yapkm01 picture yapkm01 · Apr 12, 2015 · Viewed 14.4k times · Source

I'm newbie to openldap. I have done a bit of research on the above topic and so far couldn't find a satisfactory answer. I would appreciate if anyone can show me how to enable/disable/remove a user account in openldap ..
Thanks.

Answer

Feng Xi picture Feng Xi · Jul 13, 2018

admin changing user's password is not a good idea. it has several side effects:

  • it will cause a login failure.
  • it's not easy to re-enable user

I like the solution to add a ACL of userPassword attribute, see the solution here: acl control userPassword it's clean and effective.

Related questions

Querying Windows Active Directory server using ldapsearch from command line

Can anyone let me know if querying Active Directory server using ldapsearch, ldapadd, ldapdelete, etc. utilities is possible or not?

Read More
How do I clone an OpenLDAP database

I know this is more like a serverfault question than a stackoverflow question, but since serverfault isn't up yet, here I go: I'm supposed to move an application from one redhat server to another, and without very good knowledge of …

Read More
Ldap error code 32

I'm trying to synchronize OpenLDAP and Active directory together. To do so I'm using a program called LSC-Project which is specified to do this sort of thing. I have configured the program the best I can however I can't find …

Read More