Topic
3 replies Latest Post - ‏2012-12-06T18:18:24Z by SystemAdmin
SystemAdmin
SystemAdmin
9855 Posts
ACCEPTED ANSWER

Pinned topic TDS pwd-policy

‏2012-12-06T16:25:36Z |
Hi All,

I have TDS standalone server. I configured the password policies in cn=pwdpolicy,cn=ibmpolicies as below.

idsldapmodify -D <AdminDN> -w <AdminPW> -p <port> -k
dn: cn=pwdpolicy,cn=ibmPolicies
ibm-pwdpolicy:true
ibm-pwdGroupAndIndividualEnabled:true
pwdAllowUserChange:true
pwdAttribute:userPassword
pwdMinLength:8
I also created a testuser using inteorgperson class.
I checked the effective password policy assigned to that user it is same as i configured in pwdpolicy.

But using that user i am not abble to change password or when I set password using admin with less than 8 length still it is accepting the password.

I think the password policy is not taking effect on that userpassword.

Please help me am I missing some thing.

I followed this below link completely
http://www.ibm.com/developerworks/tivoli/library/t-tdspp-ect/

still it is not working password policy is not taking effect.
Updated on 2012-12-06T18:18:24Z at 2012-12-06T18:18:24Z by SystemAdmin
  • bmatteso
    bmatteso
    108 Posts
    ACCEPTED ANSWER

    Re: TDS pwd-policy

    ‏2012-12-06T18:12:05Z  in response to SystemAdmin
    Hi,

    I think you need to set pwdCheckSyntax to a non-zero value for the policies for pwdMinLength to work. Not sure why the example in that doc doesn't set that. There are more details on setting this in that article you linked to.

    Regards.
    • SystemAdmin
      SystemAdmin
      9855 Posts
      ACCEPTED ANSWER

      Re: TDS pwd-policy

      ‏2012-12-06T18:18:16Z  in response to bmatteso
      It Works after I am setting the pwdCheckSyntax=1 it is not allowing me to set the short password.