|
Title: Proxy auth using LDAP and password expiry? Post by: Fleck on Wednesday 14 November 2012, 11:32:23 pm Hi All,
I'm running Endian's proxy in non-transparent mode. It can successfully authenticate users against an OpenLDAP server (running on a CentOS 6.3 box) using usernames and passwords, and filter web content via specific user groups. I'd like to know if it is possible for Endian (or Squid for that matter) to detect whether the user's password has expired using the 'account expiration date'. Then, depending on whether the user's password on the LDAP server has expired or not, the user's web browser will prompt the user to change his/her password which will update the LDAP database. I'd like to know whether this is at all possible with Endian and thus in effect force users to change their passwords every x number of days? (e.g. 30 days) Thanks, Fleck |