How to configure password policies (ppolicy) with openldap server in Red Hat Enterprise Linux 5 and above?

Solution Verified - Updated -


  • Although it is possible to apply password policies using "shadow" attributes like (shadowLastChange, shadowMin,  shadowMax, shadowWarning, shadowInactive, shadowExpire) provided in shadowAccount objectclass, one drawback is that it cannot used with the default policy. Everything needs to set manually for each user.


  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 6
  • Openldap

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In