From 48d8394fb8bb2b903871cf104c1b440919d9d266 Mon Sep 17 00:00:00 2001 From: Buchan Milne Date: Mon, 22 Nov 2010 14:20:10 +0000 Subject: Add timelimits for nss_ldap, enable password policy --- modules/pam/templates/ldap.conf | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) (limited to 'modules') diff --git a/modules/pam/templates/ldap.conf b/modules/pam/templates/ldap.conf index 88e47d6b..f346873a 100644 --- a/modules/pam/templates/ldap.conf +++ b/modules/pam/templates/ldap.conf @@ -2,7 +2,9 @@ rootbinddn cn=<%= fqdn %>,ou=Hosts,<%= dc_suffix %> uri ldaps://ldap.<%= domain %> base <%= dc_suffix %> -pam_lookup_policy no +timelimit 4 +bind_timelimit 4 +pam_lookup_policy yes pam_password exop nss_base_passwd ou=People,<%= dc_suffix %>?one nss_base_shadow ou=People,<%= dc_suffix %>?one -- cgit v1.2.1