- 论坛徽章:
- 0
|
你讲得不是很清楚,首先你的LDAP是那个版本?
响应的操作文档没有讲密码策略。
我用的SUN java ds 6.3版本,密码策略里面就有“pwdAllowUserChange: TRUE //允许用户改密码”
version: 1
dn: cn=SecurityPolicy,dc=xx,dc=xx,dc=com
passwordMaxAge: 7776000 //单位是second
passwordWarning: 1209600 //单位是second
passwordMustChange: on
pwdMaxAge: 7776000
pwdExpireWarning: 1209600
pwdMustChange: TRUE //改密码后首次登录必须改密码
passwordMinLength: 8 //长度8位
pwdMinLength: 8
passwordInHistory: 5 //记住历史5个密码
pwdInHistory: 5
passwordLockout: off
pwdLockout: false
passwordCheckSyntax: off
pwdCheckQuality: 0
objectClass: top
objectClass: ldapsubentry
objectClass: pwdPolicy
objectClass: sunPwdPolicy
objectClass: passwordPolicy
cn: SecurityPolicy
pwdAttribute: userPassword
pwdFailureCountInterval: 600
pwdAllowUserChange: TRUE //允许用户改密码
pwdMaxFailure: 3 //密码错误3次
pwdLockoutDuration: 3600
pwdMinAge: 3600
passwordResetFailureCount: 600
passwordChange: on
passwordMaxFailure: 3
passwordUnlock: on
passwordLockoutDuration: 3600
passwordExp: on
passwordMinAge: 3600 //密码最短生效时间 |
|