integ/ldap/openldap/centos/meta_patches/openldap-enable-password-policy.patch

From 7e79fd683d458499fbaef1d3cdbf5654cfccf4ff Mon Sep 17 00:00:00 2001
From: Scott Little <scott.little@windriver.com>
Date: Mon, 2 Oct 2017 17:11:22 -0400
Subject: [PATCH 4/5] WRS: openldap-enable-password-policy.patch

---
 SPECS/openldap.spec | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/SPECS/openldap.spec b/SPECS/openldap.spec
index 5121f8a..973c2db 100644
--- a/SPECS/openldap.spec
+++ b/SPECS/openldap.spec
@@ -85,6 +85,9 @@ Patch92: check-password-loglevels.patch
 Patch100: openldap-autoconf-pkgconfig-nss.patch
 Patch102: openldap-fedora-systemd.patch
 
+# WRS specific patches
+Patch200: rootdn-should-not-bypass-ppolicy.patch
+
 BuildRequires: cyrus-sasl-devel, nss-devel, krb5-devel, tcp_wrappers-devel, unixODBC-devel
 BuildRequires: glibc-devel, libtool, libtool-ltdl-devel, groff, perl, perl-devel, perl(ExtUtils::Embed)
 # smbk5pwd overlay:
@@ -215,6 +218,9 @@ AUTOMAKE=%{_bindir}/true autoreconf -fi
 
 %patch102 -p1
 
+# WRS
+%patch200 -p1
+
 # build smbk5pwd with other overlays
 ln -s ../../../contrib/slapd-modules/smbk5pwd/smbk5pwd.c servers/slapd/overlays
 mv contrib/slapd-modules/smbk5pwd/README contrib/slapd-modules/smbk5pwd/README.smbk5pwd
@@ -338,12 +344,12 @@ install -d -m 740 %{buildroot}%{_sysconfdir}/openldap
 cat > %{buildroot}%{_sysconfdir}/openldap/check_password.conf <<EOF
 # OpenLDAP pwdChecker library configuration
 
-#useCracklib 1
-#minPoints 3
-#minUpper 0
-#minLower 0
-#minDigit 0
-#minPunct 0
+useCracklib 1
+minPoints 4
+minUpper 1
+minLower 1
+minDigit 1
+minPunct 1
 EOF
 mv README{,.check_pwd}
 popd
-- 
1.9.1