Download this book in PDF (3673 KB)

pwdCheckQuality(5dsat)

NAME | Synopsis | Description | SYNTAX | Usage | Examples | Attributes

NAME

pwdCheckQuality – LDAP attribute type

Synopsis

( 1.3.6.1.4.1.42.2.27.8.1.5
 NAME 'pwdCheckQuality'
 DESC 'Level of required quality'
 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
 X-DS-USE 'internal'
 X-ORIGIN 'Password Policy for LDAP Directories Internet Draft' )

Description

Indicates how the password quality will be verified while being modified or added. This attribute can take the following values:

0

Default. Quality checking is not enforced.

1

Directory Server checks the quality of the password. If Directory Server cannot determine the quality of the password, because the password is hashed for example, it accepts the password and logs a warning message.

2

Directory Server checks the quality of the password. If Directory Server cannot determine the quality of the password, it returns LDAP_CONSTRAINT_VIOLATION and refuses the operation.

If the password value is already hashed, and prefixed by a tag other than {CLEAR} setting this attribute to 1 means the server does not check quality and logs a warning. Setting this attribute to 2 in this case causes the server to reject the modification because it cannot check the password quality.

SYNTAX

Integer, single-valued.

Usage

Attribute specific to this Directory Server instance and version of the schema.

Examples

pwdCheckQuality: 1

Attributes

See attributes(5) for descriptions of the following attributes:

ATTRIBUTE TYPE	ATTRIBUTE VALUE
Availability	SUNWldap-directory
Stability Level	External: IETF, Password Policy Internet-Draft

NAME | Synopsis | Description | SYNTAX | Usage | Examples | Attributes