Opened 9 years ago

Last modified 6 months ago

#1675 new task

Add "last bind" record to LDAP database

Reported by: strk Owned by: sac@…
Priority: normal Milestone:
Component: SysAdmin/LDAP Keywords: ldap
Cc: martinspott

Description

We need a way to tell when a user was last active in LDAP. I believe the closest match is when the user was last authenticated, even if services will possibly not contact LDAP again when authenticated sessions are alive.

Searching on the web I stumbled upon what looks like being an addon for slapd that adds this information: http://www.openldap.org/lists/openldap-technical/201211/msg00092.html

Change History (1)

comment:1 by strk, 6 months ago

Component: SysAdminSysAdmin/LDAP

This would still be useful, to tell which accounts are "dormient" and thus candidate for blocking ( #1668 ) and eventually removal.

Note: See TracTickets for help on using tickets.