Password Policy Attributes - Netscape DIRECTORY SERVER 7.0 - DEPLOYMENT Deployment Manual

Note that in addition to BIND requests, password policy also occurs during ADD
and MODIFY operations if the
section that follows) is present in the request.
• If you try to modify
activated, and it is too soon to allow the change, the server will return a
constraintViolation
• If you try to add or modify
password minimum length policies are activated, and the
length is less than the minimum length, the server will return a
constraintViolation
• If you try to modify
and
userPassword
password, the server will return a
will not be changed.
• If you try to add or modify
policy is activated, and
entry, the server will return a
not be changed.

Password Policy Attributes

This section describes the attributes you set to create a password policy for your
server. For instructions to set these attributes, check the Netscape Directory Server
Administrator's Guide.
The attributes are described in the following sections:
• Password Change after Reset
• User-Defined Passwords
• Password Expiration
• Expiration Warning
• Grace Login Limit
• Password Syntax Checking
• Password Length
• Password Minimum Age
• Password History
userPassword
, the password minimum age policy is
userPassword
error. The password will not be changed.
userPassword
error. The password will not be changed.
, the password history policy is activated,
userPassword
is in the history or
userPassword
constraintViolation
userPassword
is the value of another attribute of the
userPassword
constraintViolation
Designing a Password Policy
attribute (which is explained in the
, the password syntax checking and
userPassword
is the same as the current
error. The password
, the password syntax checking
error. The password will
Chapter 7 Designing a Secure Directory 149