using DS 5.2, can't find the setting that will change this:
passwd: The first 8 characters of the password must contain at least 1 numeric or special character(s).
need to bring it inline with our standard password policy. i've read the DS documentation regarding user management but the password information listed there doesn't mention complexity.
are you looking to set this in the directory or on the clients? if you're looking to do this for unix clients you need make sure that the shadowAccount attribute values are set for each user. this is enforced on the clients by modifying /etc/default/passwd on solaris, i forget where to set this on linux off the top of my head.
to set password stuff for DS open the DS console -> configure -> data -> password tab.
I was hoping to set in the directory, and have looked in the place you recommended but the configurations there are limited to items like expiration time, length of password, etc. The complexity settings that I'm trying specifically to set are the number of letters, special characters, etc. that are required to be in the password itself.
Are those restrictions somehow inherited from the local unix host, even though the account is in the directory?
sry to answer my own post but such an obvious question was ez enough to test on my own. string tests for password complexity for directory users are indeed handled by the values set in /etc/default/passwd on the local unix system.
so if i understand correctly - it is impossible to enforce directory wide rules regarding the number of special characters,digits and numbers a directory user password needs to have. this can only be done on the unix client end.
