This section describes the default attributes that are required for creating the DSfW password policy for DSfW users.
Table D-1 DSfW Password Policy Attributes
|
Attribute |
Description |
Value |
|---|---|---|
|
nspmConfigurationOptions |
Defines the characteristics of the password policy such as enabling universal password policy. The value specified is an integer value. |
832 |
|
passwordExpirationInterval |
Time interval (in seconds) after which the password will expire. |
3628800 (time in seconds) |
|
nspmAdminsDoNotExpirePassword |
Specifies that the administrator password cannot expire. |
True |
|
nspmSpecialCharactersAllowed |
Allows special characters in passwords. |
True |
|
nspmNumericCharactersAllowed |
Allows numeric characters in passwords. |
True |
|
nspmLowerAsLastCharacter |
Allows the last character of the password to be in lowercase. |
True |
|
nspmLowerAsFirstCharacter |
Allows the first character of the password to be in lowercase. |
True |
|
nspmExtendedCharactersAllowed |
Allows extended characters in passwords. |
True |
|
nspmCaseSensitive |
Enables passwords to be case sensitiv.e |
True |
|
nspmSpecialAsLastCharacter |
Allows the last character of the password to be a special character. |
True |
|
nspmSpecialAsFirstCharacter |
Allows the first character of the password to be a special character. |
True |
|
nspmNumericAsLastCharacter |
Allows the last character of the password to be a numeric character |
True |
|
nspmNumericAsFirstCharacter |
Allows the first character of the password to be a numeric character. |
True |
|
passwordUniqueRequired |
Specifies whether any old passwords can be reused. |
False |
|
loginGraceLimit |
Specifies the number of grace logins allowed. |
6 |
|
passwordAllowChange |
Specifies whether the eDirectory object can change the password. |
True |