HP-UX Directory Server 8.1 schema reference

4.1.21 passwordCheckSyntax (pwdCheckSyntax)

This attribute specifies whether the password syntax will be checked before the password is

saved. The password syntax checking mechanism checks that the password meets or exceeds

the password minimum length requirement and that the string does not contain any trivial

words, such as the user’s name or ID or any attribute value stored in the uid, cn, sn, givenName,

ou, or mail attributes of the user’s directory entry.

2.16.840.1.113730.3.1.103OID

DirectoryStringSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.22 passwordExp

This attribute indicates whether user passwords will expire after a given number of seconds. By

default, user passwords do not expire. Once password expiration is enabled, set the number of

seconds after which the password will expire using the passwordMaxAge attribute.

2.16.840.1.113730.3.1.98OID

DirectoryStringSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.23 passwordExpirationTime

This attribute specifies the length of time that passes before the user’s password expires.

2.16.840.1.113730.3.1.91OID

GeneralizedTimeSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.24 passwordExpWarned

This attribute is used to indicate that a password expiration warning has been sent to the user.

2.16.840.1.113730.3.1.92OID

DirectoryStringSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.25 passwordGraceLimit

This attribute specifies the number of login attempts that are allowed to a user after the password

has expired, called a grace login.

2.16.840.1.113730.3.1.999OID

DirectoryStringSyntax

98 Operational attributes, special attributes, and special object classes