2.3.1.125 PasswordMinUppers (Password syntax)
This sets the minimum number of uppercase letters password must contain.
Parameter | Description |
Entry DN | cn=config |
|
|
Valid Range | 0 to 64 |
|
|
Default Value | 0 |
|
|
Syntax | Integer |
|
|
Example | passwordMinUppers: 2 |
|
|
2.3.1.126 passwordMustChange (Password must change)
Indicates whether users must change their passwords when they first bind to the Directory Server after the password has been created or reset by the Directory Manager.
For more information on password policies, see the "Managing Users and Passwords" chapter in the
Parameter | Description |
Entry DN | cn=config |
|
|
Valid Values | on or off |
|
|
Default Value | off |
|
|
Syntax | DirectoryString |
|
|
Example | passwordMustChange: off |
|
|
2.3.1.127 passwordResetFailureCount (Reset password failure count after)
Indicates the amount of time in seconds after which the password failure counter resets. Each time an invalid password is sent from the user's account, the password failure counter is incremented. If the passwordLockout attribute is set to on, users are locked out of the directory when the counter reaches the number of failures specified by the passwordMaxFailure attribute (within 600 seconds by default). After the amount of time specified by the passwordLockoutDuration attribute, the failure counter is reset to zero (0).
For more information on password policies, see the "Managing Users and Passwords" chapter in the
Parameter | Description |
Entry DN | cn=config |
|
|
Valid Range | 1 to the maximum 32 bit integer value (2147483647) in seconds |
|
|
Default Value | 600 |
|
|
Syntax | Integer |
|
|
Example | passwordResetFailureCount: 600 |
|
|
2.3.1.128 passwordStorageScheme (Password storage scheme)
This attribute sets the type of encryption used to store Directory Server passwords.
70 Core server configuration reference