From 973c1698cb3bcf229faf5f897f86375d373fd9e8 Mon Sep 17 00:00:00 2001 From: Howard Chu Date: Thu, 4 Jun 2009 12:26:29 +0000 Subject: [PATCH] Note that pam-session logging requires a rootdn --- contrib/slapd-modules/nssov/slapo-nssov.5 | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/contrib/slapd-modules/nssov/slapo-nssov.5 b/contrib/slapd-modules/nssov/slapo-nssov.5 index d91ad4628f..855647d967 100644 --- a/contrib/slapd-modules/nssov/slapo-nssov.5 +++ b/contrib/slapd-modules/nssov/slapo-nssov.5 @@ -247,7 +247,9 @@ of the form .RE Upon logout the corresponding value will be deleted. This feature allows a single LDAP Search to be used to check which users are logged in across -all the hosts of a network. By default no services are configured. +all the hosts of a network. The rootdn of the database is used to perform +the updates of the loginStatus attribute, so a rootdn must already be +configured for this feature to work. By default no services are configured. .LP The PAM functions support LDAP Password Policy as well. If the password policy overlay is in use (see -- 2.39.5