Red Hat Directory Server 8.0 Configuration, Command, and File Reference
3.1.108. passwordMaxAge (Password Maximum Age)
Indicates the number of seconds after which user passwords expire. To use this attribute,
password expiration has to be enabled using the passwordExp attribute.
For more information on password policies, see the "Managing Users and Passwords" chapter
in the Directory Server Administrator's Guide.
Parameter Description
Entry DN cn=config
Valid Range 1 to the maximum 32 bit integer value
(2147483647) in seconds
Default Value 8640000 (100 days)
Syntax Integer
Example passwordMaxAge: 100
3.1.109. passwordMaxFailure (Maximum Password Failures)
Indicates the number of failed bind attempts after which a user is locked out of the directory. By
default, account lockout is disabled. Enable account lockout by modifying the passwordLockout
attribute.
For more information on password policies, see the "Managing Users and Passwords" chapter
in the Directory Server Administrator's Guide.
Parameter Description
Entry DN cn=config
Valid Range 1 to maximum integer bind failures
Default Value 3
Syntax Integer
Example passwordMaxFailure: 3
3.1.110. passwordMaxRepeats (Password Syntax)
Maximum number of times the same character can appear sequentially in the password. Zero
(0) is off. Integer values reject any password which used a character more than that number of
times; for example, 1 rejects characters that are used more than once (aa) and 2 rejects
characters used more than twice (aaa).
Parameter Description
Entry DN cn=config
Valid Range 0 to 64
Chapter 2. Core Server Configuration Reference
66