Ok. Let me rephrase all of this. I'm trying to determine the amount of time until a user's password
expires. This information is stored in an Oracle Internet Directory
LDAP.
I need to get the password expiration time, which is the
pwdMaxAge attribute in
"cn=PwdPolicyEntry,cn=Common,cn=Products,cn=OracleContext"
I can do this fine.
Next I need to get the timestamp of a particular user's password.
According to this:
http://www.lc.leidenuniv.nl/awcourse/oracle/network.920/a96574/pwdpol... "In addition, the object class top contains these operational
attributes, to maintain the user-password state information for each
user entry."
pwdChangedTime contains a password timestamp.
pwdChangedTime is one of those attributes in the object class
'top.' How do I read this value for a single user such as
"uid=mojoe,ou=People,o=myserver.com" ?
I know enough about jndi to read attributes from mojoe, like the
uid,etc. But I can't read those inherited from 'top.' Also, this
is probably more of an Oracle/OID question, but do I have to configure
the ldap to store the value for pwdChangedTime, or is the timestamp
automatic?
Is there an easier way to get a notice that the password has expired,
like through "pwdExpirationWarned"? (I have no idea how to get jndi
to work with pwdExpirationWarned.)
This is a tough question, and all help would be appreciated!
Thank you.
[ July 07, 2005: Message edited by: Andrew Davis ]