From 797c3cfbf127cc4bd6445ccb9d4d6abf0fd8bf4e Mon Sep 17 00:00:00 2001 From: Maxime Besson Date: Fri, 8 Jan 2021 14:36:08 +0100 Subject: [PATCH] Doc for ldapGetUserBeforePasswordChange (#714) --- doc/sources/admin/authldap.rst | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/doc/sources/admin/authldap.rst b/doc/sources/admin/authldap.rst index ad53eb7c8..bce65fa53 100644 --- a/doc/sources/admin/authldap.rst +++ b/doc/sources/admin/authldap.rst @@ -207,7 +207,11 @@ Password reset (default: TRUE). - **Allow a user to reset his expired password**: if activated, the user will be prompted to change password if his password is expired - (default: 0) + (default: disabled) +- **Search for user before password change**: this option forces the password + change module to search for the user again, refreshing its DN. This feature + is only useful in rare cases when you use LDAP as the password module, but + not as the UserDB module. (default: enabled) - **IBM Tivoli DS support**: enable this option if you use ITDS. LL::NG will then scan error message to return a more precise error to the user.