Installation

Install from RPM provided in Downloads section or use setup.py from cloned git repository:

1) python setup.py install

or

2) python setup.py bdist_rpm && yum localinstall dist/*noarch*.rpm

will build you an rpm which you can install to your system via yum or rpm with all necessary dependencies linked in (example one liner does the yum install for you)

Example command line

Query all user accounts with expired passwords or passwords expiring inside next 30 days and execute a script for each matching user:

#!bash
ipa-passwd-exp-query --gssapi --server ipaserver.example.tld --basedn cn=users,cn=accounts,dc=example,dc=tld --days 30 --verbose --script /usr/local/bin/notify_user.sh

Example hook script provided

In Git repository there is an "test.sh" script provided that demonstrates the script and its parameters passed to it by FreeIPA expired user accounts query tool when --script parameter is given.

This script can then be used for example to send emails to users that are in danger of having their access revoked.