HP-UX Directory Server 8.1 configuration, command, and file reference
DescriptionParameter
DirectoryStringSyntax
nsslapd-privatenamespaces: cn=configExample
2.3.1.79 nsslapd-pwpolicy-local (Enable subtree- and user-level password policy)
Turns fine-grained (subtree- and user-level) password policy on and off.
If this attribute has a value of off, all entries (except for cn=Directory Manager) in the
directory is subjected to the global password policy; the server ignores any defined subtree/user
level password policy.
If this attribute has a value of on, the server checks for password policies at the subtree- and
user-level and enforces those policies.
DescriptionParameter
cn=configEntry DN
on or off
Valid Values
offDefault Value
DirectoryStringSyntax
nsslapd-pwpolicy-local: offExample
2.3.1.80 nsslapd-readonly (Read only)
This attribute sets whether the whole server is in read-only mode, meaning that neither data in
the databases nor configuration information can be modified. Any attempt to modify a database
in read-only mode returns an error indicating that the server is unwilling to perform the operation.
DescriptionParameter
cn=configEntry DN
on or off
Valid Values
offDefault Value
DirectoryStringSyntax
nsslapd-readonly: offExample
2.3.1.81 nsslapd-referral (Referral)
This multi-valued attribute specifies the LDAP URLs to be returned by the suffix when the server
receives a request for an entry not belonging to the local tree; that is, an entry whose suffix does
not match the value specified on any of the suffix attributes. For example, assume the server
contains only entries:
ou=People,dc=example,dc=com
but the request is for this entry:
ou=Groups,dc=example,dc=com
In this case, the referral would be passed back to the client in an attempt to allow the LDAP client
to locate a server that contains the requested entry. Although only one referral is allowed per
Directory Server instance, this referral can have multiple values.
2.3 Core server configuration attributes reference 53