I have a question concerning Openldap. I'm using a solution(PingFederate) that gets errors from openldap to do different things depending on the filter. For example i can say : detect the invalid DN Error and when you get it do something.
I've set olcPPolicyUseLockout to true in ppolicy to get more information when there is invalid credentials; so that Pingfederate would catch it. But it doesn't work
When i use the ldapwhoami with -e ppolicy i get the following: ldap_bind: Invalid credentials (49); Password expired ldap_bind: Invalid credentials (49); Account locked
So my question is the following : What does the semicolon mean in Openldap ? Is the message after the semicolon taken into account ? Does Openldap communicate the whole error to the other solutions that it is integrated with ?