Core Server Configuration Attributes Reference
86 Red Hat Directory Server Configuration, Command, and File Reference • May 2005
passwordInHistory (Number of Passwords to Remember)
Indicates the number of passwords the Directory Server stores in history.
Passwords that are stored in history cannot be reused by users. By default, the
password history feature is disabled, meaning that the Directory Server does not
store any old passwords, and, so, users can reuse passwords. You can enable
password history by using the
passwordHistory
attribute.
To prevent users from rapidly cycling through the number of passwords that you
are tracking, use the
passwordMinAge
attribute.
For more information on password policies, see chapter 7, “User Account
Management,” in the Red Hat Directory Server Administrator’s Guide.
passwordLockout (Account Lockout)
Indicates whether users will be locked out of the directory after a given number of
failed bind attempts. By default, users will not be locked out of the directory after
a series of failed bind attempts. If you enable account lockout, you can set the
number of failed bind attempts after which the user will be locked out using the
passwordMaxFailure
attribute.
For more information on password policies, see chapter 7, “User Account
Management,” in the Red Hat Directory Server Administrator’s Guide.
Entry DN: cn=config
Valid Range: 2 to 24 passwords
Default Value: 6
Syntax: Integer
Example: passwordInHistory: 7
Entry DN: cn=config
Valid Values: on | off
Default Value: on
Syntax: DirectoryString
Example: passwordLockout: off
To Next Page
Loading...
Need help?
General
