ITS#9725 Update lastbind manpage to document core functionality

author Ondřej Kuzník <ondra@mistotebe.net>

Thu, 4 Nov 2021 10:15:27 +0000 (10:15 +0000)

committer Quanah Gibson-Mount <quanah@openldap.org>

Thu, 11 Nov 2021 17:12:45 +0000 (17:12 +0000)
author Ondřej Kuzník <ondra@mistotebe.net>
Thu, 4 Nov 2021 10:15:27 +0000 (10:15 +0000)
committer Quanah Gibson-Mount <quanah@openldap.org>
Thu, 11 Nov 2021 17:12:45 +0000 (17:12 +0000)
diff --git a/contrib/slapd-modules/lastbind/slapo-lastbind.5 b/contrib/slapd-modules/lastbind/slapo-lastbind.5

index d0da8b8dea935b21877a34665b441b0462c95057..82d666d5d1bdbe487ea130c27938c4e588096bdf 100644 (file)
--- a/contrib/slapd-modules/lastbind/slapo-lastbind.5
+++ b/contrib/slapd-modules/lastbind/slapo-lastbind.5
@@ -19,6 +19,11 @@ older than a given value, thus avoiding large numbers of write
  operations penalizing performance.
  One sample use for this overlay would be to detect unused accounts.
  
+Now that OpenLDAP has native support for most of this functionality,
+storing the value in pwdLastSuccess to better interact with the Behera
+Password Policy draft 10. Unless you require lastbind_forward_updates,
+you should consider using that instead.
+
  .SH CONFIGURATION
  The config directives that are specific to the
  .B lastbind
@@ -98,6 +103,11 @@ default slapd configuration file
  .SH SEE ALSO
  .BR slapd.conf (5),
  .BR slapd (8).
+.LP
+IETF LDAP password policy proposal by P. Behera, L.  Poitou and J.
+Sermersheim:  documented in IETF document
+"draft-behera-ldap-password-policy-10.txt".
+
  The
  .BR slapo-lastbind (5)
  overlay supports dynamic configuration via
author	Ondřej Kuzník <ondra@mistotebe.net>
	Thu, 4 Nov 2021 10:15:27 +0000 (10:15 +0000)
committer	Quanah Gibson-Mount <quanah@openldap.org>
	Thu, 11 Nov 2021 17:12:45 +0000 (17:12 +0000)