Red Hat DIRECTORY SERVER 7.1 - ADMINISTRATOR Administrator's Manual page 287

Add the required attributes to the subtree or user entries by running the
1.
ns-newpwpolicy.pl
The command syntax for the script is as follows:
ns-newpwpolicy.pl [-D rootDN] { -w password | -w - | -j filename }
[-p port] [-h host] -U userDN -S suffixDN
For updating a subtree entry, use the
the option. The
-U
entry at a time. It can, however, accept both user and suffix entries at the same
time. For details about the script, see the Red Hat Directory Server Configuration,
Command, and File Reference.
The script adds the required attributes depending on whether the target entry
is a subtree or user entry.
For a subtree (for example,
entries are added:
A container entry (
H
various password policy-related entries for the subtree and all its children.
For example:
dn: cn=nsPwPolicyContainer, ou=people, dc=example, dc=com
objectClass: top
objectClass: nsContainer
cn: nsPwPolicyContainer
The actual password policy specification entry (
H
holding all the password policy attributes that are specific to the subtree.
For example:
dn: cn="cn=nsPwPolicyEntry, ou=people, dc=example,
dc=com", cn=nsPwPolicyContainer, ou=people, dc=example,
dc=com
objectclass: top
objectclass: extensibleObject
objectclass: ldapsubentry
objectclass: passwordpolicy
The CoS template entry (
H
pwdpolicysubentry
entry. For example:
dn: cn="cn=nsPwTemplateEntry, ou=people, dc=example,
dc=com", cn=nsPwPolicyContainer, ou=people, dc=example,
dc=com
objectclass: top
objectclass: extensibleObject
script.
-S
ns-newpwpolicy.pl
ou=people, dc=example, dc=com
nsPwPolicyContainer
nsPwTemplateEntry
value pointing to the above (
Managing the Password Policy
option. For updating a user entry, use
script accepts only one user or subtree
) at the subtree level for holding
nsPwPolicyEntry
) that has the
nsPwPolicyEntry
Chapter 7 User Account Management
), the following
) for
)
287