Note that in addition to BIND requests, password policy also occurs during ADD
and MODIFY operations if the
section that follows) is present in the request.
•
If you try to modify
activated, and if it is too soon to allow the change, the server will return a
constraintViolation
•
If you try to add or modify
checking and password minimum length policies are activated, and the
length is less than the minimum length, the server will return a
userPassword
constraintViolation
•
If you try to modify
activated, and
userPassword
the current password, the server will return a
The password will not be changed.
•
If you try to add or modify
policy is activated, and
entry, the server will return a
not be changed.
Password Policy Attributes
This section describes the attributes you set to create a password policy for your
server. For instructions to set these attributes, check the Netscape Directory Server
Administrator's Guide.
The attributes are described in the following sections:
•
User-Defined Passwords
•
Password Change After Reset
•
Password Expiration
•
Expiration Warning
•
Password Syntax Checking
•
Password Length
•
Password Minimum Age
•
Password History
•
Password Storage Scheme
userPassword
and if the password minimum age policy is
userPassword
error. The password will not be changed.
userPassword
error. The password will not be changed.
, and the password history policy is
userPassword
is in the history or
userPassword
is the value of another attribute of the
userPassword
constraintViolation
Designing a Password Policy
attribute (which is explained in the
, and if the password syntax
userPassword
constraintViolation
, and the password syntax checking
error. The password will
Chapter 7
Designing a Secure Directory
is the same as
error.
141