LDAP no pwdChangedTime
I'm trying to write a script to email each LDAP user when their password is getting ready to expire. This is on a CentOS 5 server. I am trying to run ldapsearch but can't seem to get the pwdchangedtime to show up.
The command I am running is
ldapsearch -x pwdChangedTime
All that is displayed is the dn user name and Account that it is under. Am I running the correct command without the proper attributes?
That syntax looks right. Have you configured the LDAP Password Policy Overlay? If you query an LDAP user to get all attributes, if you don't see pwd* attributes listed, then you probably have not done this. See here for procedures on that.
Thanks. This looks like it is it. I'll look into setting this up and let you know. Thanks for the link as well.