Search Exchange

Search All Sites

Nagios Live Webinars

Let our experts show you how Nagios can help your organization.

Contact Us

Phone: 1-888-NAGIOS-1
Email: sales@nagios.com

Login

Remember Me

Directory Tree

LDAP account expire

Rating
1 vote
Favoured:
0
Current Version
1.0
Last Release Date
2018-05-15
Compatible With
  • Nagios 1.x
  • Nagios 2.x
  • Nagios 3.x
  • Nagios 4.x
Twitter Handle
binfalse
License
GPL
Hits
5840
Files:
FileDescription
check_passwd_exp.plPerl script to check if an LDAP account is about to expire.
Nagios CSP

Meet The New Nagios Core Services Platform

Built on over 25 years of monitoring experience, the Nagios Core Services Platform provides insightful monitoring dashboards, time-saving monitoring wizards, and unmatched ease of use. Use it for free indefinitely.

Monitoring Made Magically Better

  • Nagios Core on Overdrive
  • Powerful Monitoring Dashboards
  • Time-Saving Configuration Wizards
  • Open Source Powered Monitoring On Steroids
  • And So Much More!
Perl script to check if an LDAP account is about to expire.
It searches an LDAP tree for accounts and evaluates their `PWDLASTSET` value (if the `ACCOUNTEXPIRES` is not `0`, which would mean that the account does not expire).

The maximum age of a password is typically determined by your organisation (typically something like 1 or 3 years). You can set the max using the `--max-age` flag.
You need to provide the LDAP server URL using `--ldapserver` and the base DN, which hosts the accounts to check, using `--ldapbase`.


The warning and critical thresholds can be configured in seconds using `--warning` (default: `30*24*60*60` = 30 days) and `--critical` (default: `5*24*60*60` = 5 days).


Download the tool at [check_passwd_exp.pl](/assets/resources/stuff/monitoring/check_passwd_exp.pl) (or see [GitHub](https://github.com/binfalse/monitoring/blob/master/check_passwd_exp.pl))

Please consider to take a look at my [general monitoring setup notes](/software/nagios/plugin-setup-notes/).