subtree-level password policy is not working "loading global password policy for uid=test,ou=service,dc=example,dc=com--local policy entry not found"

Solution Verified - Updated -

Issue

  • Created a user which needs a non-expiring password but it still reverting to the global password policy which has password expiry enabled. Created a user in directory:
uid=test,ou=service,dc=example,dc=com
  • This is a normal user with basic objectclasses. On ou=service, in configuration manager, create a subtree-level password policy. This created the following object:
cn=nsPwPolicyContainer,ou=service,dc=example,dc=com
  • Inside this, the following entry was created:
cn=nsPwPolicyEntry,ou=service,dc=example,dc=com
  • Loaded the following ldif which added the pwdpolicysubentry attribute to my user:
dn: uid=test,ou=service,dc=example,dc=com
changetype: modify
replace: pwdpolicysubentry
pwdpolicysubentry: "cn=nsPwPolicyEntry,ou=service,dc=example,dc=com",cn=nsPwPolicyContainer,ou=service,dc=example,dc=com```
  • but now in the errors logfile, the following entry is logged constantly:
"loading global password policy for uid=test,ou=service,dc=example,dc=com--local policy entry not found"

Environment

  • Red Hat Directory Server 8.2

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content