Overview #
Account Expiration is an Account Restriction to indicate that a Digital Identity is no longer able to be used beyond a given date.Account Expiration may be implemented within the Password Policy (as is done in the Draft-behera-ldap-password-policy or some other method within the DSA.
This feature may be useful for creating temporary user accounts (e.g., for use by contractors, interns, or other temporary workers) that will expire after a specified date.
Some LDAP Server Implementations Attributes#
- pwdEndTime - Draft-behera-ldap-password-policy
- LoginExpirationTime - eDirectory
- AccountExpires - Microsoft Active Directory