In addition to bind requests, password policy also occurs during add and modify
operations if the
userPassword
follows) is present in the request.
•
If you try to modify
activated, and, if it is too soon to allow the change, the server will return a
constraintViolation
•
If you try to add or modify
password minimum length policies are activated. If the
is less than the minimum length, the server will return a
constraintViolation
•
If you try to modify
is in the history or
userPassword
password, the server will return a
will not be changed.
•
If you try to add or modify
policy is activated, and, if
entry, the server will return a
not be changed.
Password Policy Attributes
This section describes the attributes you set to create a password policy for your
server. For instructions to set these attributes, check the Red Hat Directory Server
Administrator's Guide.
The attributes are described in the following sections:
•
Password Change after Reset
•
User-Defined Passwords
•
Password Expiration
•
Expiration Warning
•
Grace Login Limit
•
Password Syntax Checking
•
Password Length
•
Password Minimum Age
•
Password History
attribute (which is explained in the section that
, the password minimum age policy is
userPassword
error. The password will not be changed.
userPassword
error. The password will not be changed.
, the password history policy is activated. If
userPassword
userPassword
constraintViolation
userPassword
is the value of another attribute of the
userPassword
constraintViolation
Designing a Password Policy
, the password syntax checking and
userPassword
is the same as the current
error. The password
, the password syntax checking
error. The password will
Chapter 8
Designing a Secure Directory
length
169