----- Original Message -----
You should be able to configure this using: ldap_pwd_policy = shadow
thanks, there was a little typo in my config.
:)
ldap_user_shadow_last_change ldap_user_shadow_min ldap_user_shadow_max ldap_user_shadow_warning ldap_user_shadow_inactive ldap_user_shadow_expire
can you explain how these attributes are interpreted?
now I only get two estates from the point of view of user: user can login or user can't.
I don't get any warning about expiration or any chance to change expired passwords.
I've opened a bug regarding info on lightdm package because I think is client job to understand pam messages: https://bugs.launchpad.net/ubuntu/+source/lightdm/+bug/1009013
but I wonder if there's another aproach to shadow management.
also, I would like to know if there's any way to configure Firefox/Chrome in linux to honour pam credentials, just as it does in Windows with NTLM and apache.
regards,
abosch