Topic
  • 3 replies
  • Latest Post - ‏2012-12-06T18:18:24Z by SystemAdmin
SystemAdmin
SystemAdmin
9855 Posts

Pinned topic TDS pwd-policy

‏2012-12-06T16:25:36Z |
Hi All,

I have TDS standalone server. I configured the password policies in cn=pwdpolicy,cn=ibmpolicies as below.

idsldapmodify -D <AdminDN> -w <AdminPW> -p <port> -k
dn: cn=pwdpolicy,cn=ibmPolicies
ibm-pwdpolicy:true
ibm-pwdGroupAndIndividualEnabled:true
pwdAllowUserChange:true
pwdAttribute:userPassword
pwdMinLength:8
I also created a testuser using inteorgperson class.
I checked the effective password policy assigned to that user it is same as i configured in pwdpolicy.

But using that user i am not abble to change password or when I set password using admin with less than 8 length still it is accepting the password.

I think the password policy is not taking effect on that userpassword.

Please help me am I missing some thing.

I followed this below link completely
http://www.ibm.com/developerworks/tivoli/library/t-tdspp-ect/

still it is not working password policy is not taking effect.
Updated on 2012-12-06T18:18:24Z at 2012-12-06T18:18:24Z by SystemAdmin
  • bmatteso
    bmatteso
    108 Posts

    Re: TDS pwd-policy

    ‏2012-12-06T18:12:05Z  
    Hi,

    I think you need to set pwdCheckSyntax to a non-zero value for the policies for pwdMinLength to work. Not sure why the example in that doc doesn't set that. There are more details on setting this in that article you linked to.

    Regards.
  • SystemAdmin
    SystemAdmin
    9855 Posts

    Re: TDS pwd-policy

    ‏2012-12-06T18:18:16Z  
    • bmatteso
    • ‏2012-12-06T18:12:05Z
    Hi,

    I think you need to set pwdCheckSyntax to a non-zero value for the policies for pwdMinLength to work. Not sure why the example in that doc doesn't set that. There are more details on setting this in that article you linked to.

    Regards.
    It Works after I am setting the pwdCheckSyntax=1 it is not allowing me to set the short password.
  • SystemAdmin
    SystemAdmin
    9855 Posts

    Re: TDS pwd-policy

    ‏2012-12-06T18:18:24Z  
    It Works after I am setting the pwdCheckSyntax=1 it is not allowing me to set the short password.
    Thank You.