Complete Contents
Object Class Index
Attribute Index
Schema Supported by Directory Server 4.0
LDAP Overview
Object Classes
Attributes
Object Identifiers (OIDs)
Extending Server Schema
Schema Checking
ISO Country Codes
Sources of Related Information
Contents Object Class Index Attributes Index

Directory Server Object Classes
Releases 1.x, 3.x, and 4.0



passwordPolicy
Supported by
Netscape Directory Server 3.x, 4.0

Definition
Stores the password policy for all users in the directory.

Superior Class
top

OID
2.16.840.1.113730.3.2.13


Required Attributes
 Description
objectClass

Specifes the objects for this object class.


Allowed Attributes
 Description
passwordChange

Release 4.0 functionality: setting allows or disallows user to modify password. Release 3.x functionality: settings include must, may, or cannot change passwords.

passwordCheckSyntax

Determines whether a syntax check is performed on user passwords.

passwordExp

Determines whether user passwords expire.

passwordInHistory

Defines how many passwords to keep in the history list.

passwordKeepHistory

Determines whether a history of user passwords should be saved.

passwordLockout

Determines whether users should be locked out after using an incorrect password a specified number of times.

passwordLockoutDuration

Specifies the period of time users should be locked out following a specified number of retries.

passwordMaxAge

Specifies the period of time passwords can be used before they expire.

passwordMaxFailure

Maximum number of retries allowed before a user is locked out.

passwordMinAge

Specifies the period of time a password must be in effect before a user can change it.

passwordMinLength

Specifies the minimum number of characters allowed in user passwords.

passwordMustChange

Specifes whether users must change their password followinginitial login or password reset.

passwordResetDuration

Specifies, in seconds, s the period of time that passes before the server resets the retry count to zero.

passwordResetFailureCount

Specifies the period of time that passes before the server resets the retry count to zero.

passwordStorageScheme

Specifies the type of encryption used to store directory server passwords.

passwordUnlock

Determines whether users should be locked out forever after a specified number of retries.

passwordWarning

Specifies when to send a password expiration warning to the user.



© Copyright 1999 Netscape Communications Corporation