|
|
|
### Purpose
|
|
|
|
|
|
|
|
UserReminder is a plugin which, associated with the perl script argonaut-user-reminder allows to send emails to soon-to-expire users.
|
|
|
|
|
|
|
|
It was first used with shadowExpire attribute to set an expiration date on users and send them an email which allows to postpone this expiration.
|
| ... | ... | @@ -9,9 +11,16 @@ With ppolicy the password expires after some time and the only way to avoid this |
|
|
|
In both cases once expiration happened it’s too late and nothing is done.
|
|
|
|
The email is sent before expiration, with an alert delay which can be configured.
|
|
|
|
|
|
|
|
### problems
|
|
|
|
|
|
|
|
There may be some kind of conflict when people are using both shadowExpire, ppolicy and user-reminder.
|
|
|
|
|
|
|
|
###
|
|
|
|
|
|
|
|
1. In posix mode we look for **shadowExpire** and compare it with the actual date to find if its expired. If not expired we sent an alter to the user if not already send
|
|
|
|
|
|
|
|
2. In ppolicy mode we can only update pwdMaxAge in the policy, but if the policy is global it will change for all users.
|
|
|
|
|
|
|
|
If we need different pwdMaxAge values in the policies, we need to look at the **pwdPolicySubentry** attribute for the user(s) who are going to be expired.
|
|
|
|
|
|
|
|
### solution
|
|
|
|
|
|
|
|
In this case we may want to have an option to trigger user-reminder only on shadow expire or on ppolicy, or to send a different email depending on which expiration it happening. |
|
|
\ No newline at end of file |
