Skip Headers
Oracle® Fusion Middleware Man Page Reference for Oracle Directory Server Enterprise Edition
11g Release 1 (11.1.1.7.0)
Part Number E28967-01
Go to Documentation Home
Home		 Go to Table of Contents
Contents		 Go to Index
Index		 Go to Feedback page
Contact Us
Go to previous page
Previous		 Go to next page
Next
PDF · Mobi · ePub

pwdPolicy

Password Policy objectclass

Synopsis

(  1.3.6.1.4.1.42.2.27.8.2.1
 NAME 'pwdPolicy'
 DESC 'Password Policy objectclass'
 SUP top
 AUXILIARY
 MUST ( pwdAttribute )
 MAY ( pwdMinAge $
  pwdMaxAge $
  pwdInHistory $
  pwdCheckQuality $
  pwdMinLength $
  pwdExpireWarning $
  pwdGraceAuthNLimit $
  pwdLockout $
  pwdLockoutDuration  $
  pwdMaxFailure $
  pwdFailureCountInterval $
  pwdMustChange $
  pwdAllowUserChange $
  pwdSafeModify)
 X-DS-USE 'internal'
 X-ORIGIN 'Password Policy for LDAP Directories Internet Draft' )

Description

Contains the attributes defining a password policy in effect for a set of users. A password policy is defined for a particular subtree of the DIT by adding to an LDAP subentry whose immediate superior is the root of the subtree, the pwdPolicy auxiliary object class. The scope of the password policy is defined by the SubtreeSpecification attribute of the LDAP subentry as specified in RFC 3672 (http://www.ietf.org/rfc/rfc3672.txt).

Each object that is controlled by password policy advertises the subentry that is being used to control its policy in its pwdPolicySubentry attribute. Clients wishing to examine or manage password policy for an object may interrogate the pwdPolicySubentry for that object in order to arrive at the proper pwdPolicy subentry.

Origin

This object class is defined by Password Policy Internet-Draft.

Type

Auxiliary object class

Superior

top(5DSOC)

Required Attributes

Entries of this object class require the following attribute types in addition to those inherited from the superior(s):

pwdAttribute(5DSAT)

Allowed Attributes

Entries of this object class may have the following optional attribute types in addition to those inherited from the superior(s):

pwdAllowUserChange(5DSAT), pwdCheckQuality(5DSAT), pwdExpireWarning(5DSAT), pwdFailureCountInterval(5DSAT), pwdGraceAuthNLimit(5DSAT), pwdInHistory(5DSAT), pwdLockout(5DSAT), pwdLockoutDuration(5DSAT), pwdMaxAge(5DSAT), pwdMaxFailure(5DSAT), pwdMinAge(5DSAT), pwdMinLength(5DSAT), pwdMustChange(5DSAT), pwdSafeModify(5DSAT)

Usage

Configuration object specific to this Directory Server instance, not replicated.

Attributes

See attributes(5) for descriptions of the following attributes:

ATTRIBUTE TYPE ATTRIBUTE VALUE

Availability

SUNWdsee7

Stability Level

External: IETF, Password Policy Internet-Draft

Go to previous page
Previous		 Go to next page
Next
Go to Documentation Home
Home		 Go to Table of Contents
Contents		 Go to Index
Index		 Go to Feedback page
Contact Us