Overview #

Account Expiration is an Account Restriction to indicate that a Digital Identity is no longer able to be used beyond a given date.

Account Expiration may be implemented within the Password Policy (as is done in the Draft-behera-ldap-password-policy or some other method within the DSA.

This feature may be useful for creating temporary user accounts (e.g., for use by contractors, interns, or other temporary workers) that will expire after a specified date.

Some LDAP Server Implementations Attributes#

• pwdEndTime - Draft-behera-ldap-password-policy
• LoginExpirationTime - eDirectory
• AccountExpires - Microsoft Active Directory

More Information #

There might be more information for this subject on one of the following:

• Account Lockout
• Account Restrictions
• DefinitionAccountStatusNotification
• Glossary Of LDAP And Directory Terminology
• PwdEndTime