Red Hat Directory Server 8.0 Configuration, Command, and File Reference
3.1.103. passwordHistory (Password History)
Enables password history. Password history refers to whether users are allowed to reuse
passwords. By default, password history is disabled, and users can reuse passwords. If this
attribute is set to on, the directory stores a given number of old passwords and prevents users
from reusing any of the stored passwords. Set the number of old passwords the Directory
Server stores using the passwordInHistory attribute.
For more information on password policies, see the "Managing Users and Passwords" chapter
in the Directory Server Administrator's Guide.
Parameter Description
Entry DN cn=config
Valid Values on | off
Default Value off
Syntax DirectoryString
Example passwordHistory: on
3.1.104. passwordInHistory (Number of Passwords to Remember)
Indicates the number of passwords the Directory Server stores in history. Passwords that are
stored in history cannot be reused by users. By default, the password history feature is
disabled, meaning that the Directory Server does not store any old passwords, and so users
can reuse passwords. Enable password history using the passwordHistory attribute.
To prevent users from rapidly cycling through the number of passwords that are tracked, use
the passwordMinAge attribute.
For more information on password policies, see the "Managing Users and Passwords" chapter
in the Directory Server Administrator's Guide.
Parameter Description
Entry DN cn=config
Valid Range 2 to 24 passwords
Default Value 6
Syntax Integer
Example passwordInHistory: 7
3.1.105. passwordIsGlobalPolicy (Password Policy and Replication)
This attribute controls whether password policy attributes are replicated.
Chapter 2. Core Server Configuration Reference
64