Password Management Feature in pam_ldap
This feature is new in the Solaris 9 12/02 release.
The pam_ldap password management feature strengthens the overall security of the LDAP Naming Service when used in conjunction with the Sun ONE Directory Server (formerly iPlanetTM Directory Server). Specifically, the password management feature does the following:
-
Allows for tracking password aging and expiration
-
Prevents users from choosing trivial or previously used passwords
-
Warns users if their passwords are about to expire
-
Locks out users after repeated login failures
-
Prevents users, other than the authorized system administrator, from deactivating initialized accounts
For further information on Solaris naming and directory services, see the System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP). For information about Solaris security features, see the System Administration Guide: Security Services.
- © 2010, Oracle Corporation and/or its affiliates