[CWD-1740] Support changing active status (activating/deactivating) for users in ApacheDS directories

Type: Suggestion
Resolution: Unresolved
Fix Version/s: None
Component/s: Directory - LDAP
Labels:
None
Environment:
java version 1.6.0_16

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

A user account in ApacheDS can't be deactivate when I uncheck "active" and press "Update" button.

causes

CWD-3949 Users are always created enabled on ApacheDS

Closed

is related to

CWD-1930 Add UI to bulk Activate/Deactivate users

Under Consideration

relates to

CWD-2762 Support changing active status (activating/deactivating) for users in OpenLDAP directories

Long Term Backlog

CWD-995 Provide Crowd support for Active Directory's "Account Disabled" flag

Closed

Form Name

Elian Kool added a comment - 16/Nov/2014 2:03 PM

CWD-2762 has a patch for OpenLDAP which should be easy to adjust for other LDAP schemas.

Elian Kool added a comment - 16/Nov/2014 2:03 PM CWD-2762 has a patch for OpenLDAP which should be easy to adjust for other LDAP schemas.

Brian Topping added a comment - 15/Nov/2014 11:50 PM

I'd like to see this for FreeIPA.

Brian Topping added a comment - 15/Nov/2014 11:50 PM I'd like to see this for FreeIPA.

Konrad Windszus added a comment - 16/Sep/2013 7:33 AM

You need to leverage the pwdAccountLockedTime attribute for this: It is specified in this draft http://tools.ietf.org/id/draft-behera-ldap-password-policy-10.txt as well as in http://directory.apache.org/apacheds/advanced-ug/4.3-password-policy.html. The draft seemed to be implemented by most of the current LDAP servers, so this would cover OpenLDAP as well.

Konrad Windszus added a comment - 16/Sep/2013 7:33 AM You need to leverage the pwdAccountLockedTime attribute for this: It is specified in this draft http://tools.ietf.org/id/draft-behera-ldap-password-policy-10.txt as well as in http://directory.apache.org/apacheds/advanced-ug/4.3-password-policy.html . The draft seemed to be implemented by most of the current LDAP servers, so this would cover OpenLDAP as well.

Elian Kool added a comment - 27/Jun/2013 8:08 AM

Actually ApacheDS doesn't have support for the active flag at all. As discussed in ~~CWD-995~~, it has to be implemented per backend.

--> Would be great to have support for (a configurable?) LDAP flag to reflect the active/passive state in the LDAP

Elian

Elian Kool added a comment - 27/Jun/2013 8:08 AM Actually ApacheDS doesn't have support for the active flag at all. As discussed in CWD-995 , it has to be implemented per backend. --> Would be great to have support for (a configurable?) LDAP flag to reflect the active/passive state in the LDAP Elian

Assignee:: Unassigned

Reporter:: kcchao

Votes:: 8 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 22/Oct/2009 7:59 AM

Updated:: 12/Nov/2021 6:16 AM

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Elian Kool added a comment - 16/Nov/2014 2:03 PM

Expand comment: Elian Kool added a comment - 16/Nov/2014 2:03 PM

Collapse comment: Brian Topping added a comment - 15/Nov/2014 11:50 PM

Expand comment: Brian Topping added a comment - 15/Nov/2014 11:50 PM

Collapse comment: Konrad Windszus added a comment - 16/Sep/2013 7:33 AM

Expand comment: Konrad Windszus added a comment - 16/Sep/2013 7:33 AM

Collapse comment: Elian Kool added a comment - 27/Jun/2013 8:08 AM

Expand comment: Elian Kool added a comment - 27/Jun/2013 8:08 AM

People

Dates