[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#8497) userPassword attribute in password policy

Full_Name: Sagar Bhattarai
Version: 2.4.40-9
OS: CentOS Linux release 7.2.1511
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (

I am trying to push the password policy with the following content of ldif
dn: cn=passwordDefault4,ou=policy,dc=vivox,dc=com
objectClass: pwdPolicy
objectclass: device
objectClass: top
cn: passwordDefault4
pwdAttribu%3: userPassword
pwdCheckQuality: 0
pwdMinAge: 0
pwdMaxAge: 0
pwdMinLength: 5
pwdInHistory: 5
pwdMaxFailure: 3
pwdFailureCountInterval: 0
pwdLockout: TRUE
pwdLockoutDuration: 0
pwdAllowUserChange: TRUE
pwdExpireWarning: 0
pwdGraceAuthNLimit: 0
pwdMustChange: TRUE
pwdSafeModify: TRUE

I keep getting the following error when trying to add the above policy.
ldap_add: Invalid syntax (21)
       	additional info: pwdAttribute: value #0 invalid per syntax

However id i change the pwdattribute vae frfrom "userPassword" to OID number i
am able to add this policy but none of these policies work on my systems.