If the client's password is going to expire, the server includes a password expiring control (with the OID 2.16.840.1.113730.3.4.5) with the result sent to the client. Additional Comments From rammic dated Thu Nov 09 13:23:11 CST 2006 How will this be implemented? This implies server-side control support, which appears to be unimplemented in the trunk and not identified in the roadmap. ========================================================= Issue dump from jira $VAR1 = { 'priority' => '3', 'customFieldValues' => [], 'project' => 'PENROSE', 'status' => '1', 'components' => [ { 'name' => 'Listeners', 'id' => '10070' } ], 'reporter' => 'jimyang', 'key' => 'PENROSE-124', 'assignee' => 'jimyang', 'summary' => 'LDAP Control: Password expiring (OID 2.16.840.1.113730.3.4.5)', 'id' => '10346', 'updated' => '2007-10-23 15:34:26.0', 'votes' => '1', 'fixVersions' => [ { 'releaseDate' => '2008-09-18 00:00:00.0', 'sequence' => '31', 'name' => 'Penrose-2.1', 'released' => 'false', 'id' => '10130', 'archived' => 'false' } ], 'affectsVersions' => [], 'description' => 'If the client's password is going to expire, the server includes a password expiring control (with the OID 2.16.840.1.113730.3.4.5) with the result sent to the client. ', 'created' => '2005-12-08 05:48:42.0', 'type' => '4' }; =========================================================