Oracle® Fusion Middleware Man Page Reference for Oracle Directory Server Enterprise Edition 11g Release 1 (11.1.1.7.0) Part Number E28967-01 |
|
|
PDF · Mobi · ePub |
Password Policy objectclass
Synopsis
( 1.3.6.1.4.1.42.2.27.8.2.1 NAME 'pwdPolicy' DESC 'Password Policy objectclass' SUP top AUXILIARY MUST ( pwdAttribute ) MAY ( pwdMinAge $ pwdMaxAge $ pwdInHistory $ pwdCheckQuality $ pwdMinLength $ pwdExpireWarning $ pwdGraceAuthNLimit $ pwdLockout $ pwdLockoutDuration $ pwdMaxFailure $ pwdFailureCountInterval $ pwdMustChange $ pwdAllowUserChange $ pwdSafeModify) X-DS-USE 'internal' X-ORIGIN 'Password Policy for LDAP Directories Internet Draft' )
Description
Contains the attributes defining a password policy in effect for a set of users. A password policy is defined for a particular subtree of the DIT by adding to an LDAP subentry whose immediate superior is the root of the subtree, the pwdPolicy auxiliary object class. The scope of the password policy is defined by the SubtreeSpecification attribute of the LDAP subentry as specified in RFC 3672 (http://www.ietf.org/rfc/rfc3672.txt
).
Each object that is controlled by password policy advertises the subentry that is being used to control its policy in its pwdPolicySubentry
attribute. Clients wishing to examine or manage password policy for an object may interrogate the pwdPolicySubentry
for that object in order to arrive at the proper pwdPolicy
subentry.
Origin
This object class is defined by Password Policy Internet-Draft.
Type
Auxiliary object class
Superior
Required Attributes
Entries of this object class require the following attribute types in addition to those inherited from the superior(s):
Allowed Attributes
Entries of this object class may have the following optional attribute types in addition to those inherited from the superior(s):
pwdAllowUserChange(5DSAT), pwdCheckQuality(5DSAT), pwdExpireWarning(5DSAT), pwdFailureCountInterval(5DSAT), pwdGraceAuthNLimit(5DSAT), pwdInHistory(5DSAT), pwdLockout(5DSAT), pwdLockoutDuration(5DSAT), pwdMaxAge(5DSAT), pwdMaxFailure(5DSAT), pwdMinAge(5DSAT), pwdMinLength(5DSAT), pwdMustChange(5DSAT), pwdSafeModify(5DSAT)
Usage
Configuration object specific to this Directory Server instance, not replicated.
Attributes
See attributes
(5) for descriptions of the following attributes:
ATTRIBUTE TYPE | ATTRIBUTE VALUE |
---|---|
Availability |
SUNWdsee7 |
Stability Level |
External: IETF, Password Policy Internet-Draft |