Administration
Password Policy File
Table |
| Default Password Policy Settings for the base group (Continued) | |
|
|
|
|
|
| Password Policy setting | Default |
|
|
|
|
|
| *.Expiration | None |
|
|
|
|
|
| *.MinimumAge | None |
|
|
|
|
|
| *.NotifyTime | 7d |
|
|
|
|
|
| *.Dictionaries | None |
|
|
|
|
|
| *.MaxFailAuthCnt | 10 |
|
|
|
|
|
| *.NoReqChangePwd | 0 |
|
|
|
|
|
| *.MaximumHistory | 1 |
|
|
|
|
|
| If you modify the MaxfailAuthCnt parameter, you must copy the | |
|
| password policy file to the secondary security server and then restart the | |
|
| kdcd on both the secondary and primary secondary servers. | |
|
| MaxFailAuthCnt is the only parameter that the secondary servers read | |
NOTE |
| ||
|
| in the password policy file. |
|
|
|
|
|
If you edit the password policy file on the primary server, the file must be copied to each secondary server, so that all the servers have an updated version of this file.
For more information on the Password policy file, refer to password.policy (4) manpage.
102 | Chapter 6 |
