[Fedora-directory-users] Question about setting a Password Policy from the Command Line

Eric Brown playactor at gmail.com
Mon Jul 7 20:19:13 UTC 2008


I am trying to create an LDIF for importing a default password policy
for my FDS server that I can quickly import after I start it. I was
looking through the Adminstrator's Guide and it seems to be missing
some fields that are defined in the objectclass for password policy.

I was just wondering if the Admin guide was correct and has all of the
defined attributes for the policy there and defined, or if these extra
ones are also valid and have documentation associated with them. I am
using the 1.0.4 version of FDS and I would guess that they online
guides have been updated for the newer versions, but I didn't expect
to see this much of a difference.

Attributes from the Admin Guide:
passwordGraceLimit
passwordMustChange
passwordChange
passwordExp
passwordMaxAge
passwordWarning
passwordCheckSyntax
passwordMinLength
passwordMinAge
passwordHistory
passwordInHistory
passwordStorageScheme

Attributes from the 00core.ldif schema definition of the password
policy objectclass:
passwordMaxAge
passwordExp
passwordMinLength
passwordKeepHistory
passwordInHistory
passwordChange
passwordWarning
passwordLockout
passwordMaxFailure
passwordResetDuration
passwordUnlock
passwordLockoutDuration
passwordCheckSyntax
passwordMustChange
passwordStorageScheme
passwordMinAge
passwordResetFailureCount
passwordGraceLimit
passwordMinDigits
passwordMinAlphas
passwordMinUppers
passwordMinLowers
passwordMinSpecials
passwordMin8bit
passwordMaxRepeats
passwordMinCategories
passwordMinTokenLength

Just need to know which list is really valid, and I need the
documentation or at least explanations of the fields that I can use in
my version. Thanks in advance.

Eric




More information about the 389-users mailing list