Anonymous_User Absent Member.
Absent Member.


while trying to build something which tracks password change events via
event monitoring i've made the following observations:

- the EVT_CHGPASS event seems to be server centric, i.e. it doesn't report
password changes which were initially written to a replica other than the
one i bind the ldap_monitor_events against.

- it generally reports nothing if universal password is enabled for a
given user.

this behaviour applies to (at least) edir 8739ftf3 with security services4
running on netware.

is this by design? any idea how to track all password change events
(regardless of the replica they were committed to initially) with a call
to just one server (which obviously has to have replicas of all objects)?

thanks for any help,


Labels (1)
1 Reply
Anonymous_User Absent Member.
Absent Member.


for now i can do a filtered monitoring for EVT_ADD_VALUE on the public
keys. this works around both the replica and the UP problem (as long as
the UP policy is defined to sync the RSA keys).

my original questions remain, though.

The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.