Viewing the current password policy for platform users

You can list current password policy attributes which are used in platform user authentication by using the ap_ldap_ppolicy.pl utility.

Procedure

  1. Log in to the appliance as apuser or any equivalent that is a member of ibmapadmin OS group.
  2. Use ap_ldap_ppolicy.pl listpolicy option to list the current password policy attribute values: 
    ap_ldap_ppolicy.pl listpolicy

Results

Password policy attributes are shown along with their current configuration values. The following command example shows default password policy settings: 
ap_ldap_ppolicy.p listpolicy

+----------------------------------------------------------------+
| Internal LDAP Password Policy                                  |
+----------------------------------------+-------------+---------+
| Password Policy Attribute              | Value       | Unit    |
+----------------------------------------+-------------+---------+
| pwdMaxAge                              | 90          | Days    |
| pwdExpireWarning                       | 10          | Days    |
| pwdInHistory                           | 5           |         |
| pwdMaxFailure                          | 5           |         |
| pwdLockout                             | TRUE        |         |
| pwdLockoutDuration                     | 1800        | Seconds |
| pwdFailureCountInterval                | 900         | Seconds |
| pwdMustChange                          | TRUE        |         |
| pwdAllowUserChange                     | TRUE        |         |
| pwdSafeModify                          | FALSE       |         |
+----------------------------------------+-------------+---------+
| Password Complexity Attribute          | Value       | Unit    |
+----------------------------------------+-------------+---------+
| pwdMinLength                           | 15          | Chars   |
| pwdMinUppercase                        | 1           | Chars   |
| pwdMinLowercase                        | 1           | Chars   |
| pwdMinDigits                           | 1           | Chars   |
| pwdMinSpecialchars                     | 1           | Chars   |
| pwdMinDiffCharsfromOld                 | 8           | Chars   |
| pwdMaxRepeatChar                       | 3           | Chars   |
| pwdMaxclassChars                       | 4           | Chars   |
| pwdMinclasses                          | 4           | Chars   |
+----------------------------------------+-------------+---------+