Application User and Password Expiration Policies

Typically, user administration in an LDAP server is performed through the application user. In addition, user policies that are set for the entire directory apply to the application user as well as to all other users.

If you implement a password expiration policy in the directory, then exempt the application user from the policy so the application user’s password will not expire. To do this, set the application user’s password policy explicitly after the application user sets the password policy for the whole directory. For more information about account policies and password expiration, see Account Policies and Password Expiration.