Add timelimits for nss_ldap, enable password policy

author: Buchan Milne <buchan@mageia.org> 2010-11-22 14:20:10 +0000
committer: Buchan Milne <buchan@mageia.org> 2010-11-22 14:20:10 +0000
commit: 48d8394fb8bb2b903871cf104c1b440919d9d266 (patch)
tree: 6e92822a422a158301a0a835cbc83ce06d19195e /modules/pam
parent: 92d59dd7598a752dee8dbdd291738eec55865005 (diff)
download: puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar
puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar.gz
puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar.bz2
puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar.xz
puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.zip
1 files changed, 3 insertions, 1 deletions
diff --git a/modules/pam/templates/ldap.conf b/modules/pam/templates/ldap.conf
index 88e47d6b..f346873a 100644
--- a/modules/pam/templates/ldap.conf
+++ b/modules/pam/templates/ldap.conf
@@ -2,7 +2,9 @@ rootbinddn cn=<%= fqdn %>,ou=Hosts,<%= dc_suffix %>
 
 uri ldaps://ldap.<%= domain %>
 base <%= dc_suffix %>
-pam_lookup_policy no
+timelimit 4
+bind_timelimit 4
+pam_lookup_policy yes
 pam_password exop
 nss_base_passwd ou=People,<%= dc_suffix %>?one
 nss_base_shadow ou=People,<%= dc_suffix %>?one
author	Buchan Milne <buchan@mageia.org>	2010-11-22 14:20:10 +0000
committer	Buchan Milne <buchan@mageia.org>	2010-11-22 14:20:10 +0000
commit	48d8394fb8bb2b903871cf104c1b440919d9d266 (patch)
tree	6e92822a422a158301a0a835cbc83ce06d19195e /modules/pam
parent	92d59dd7598a752dee8dbdd291738eec55865005 (diff)
download	puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar.gz puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar.bz2 puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.tar.xz puppet-48d8394fb8bb2b903871cf104c1b440919d9d266.zip