This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Universal Password Policy Assignment
Universal Password Policy Assignment

Version management

Difference between version and

At line 1 added 19 lines
!!! Overview
A [Universal Password Policy|NspmPasswordPolicy] is __NOT__ in effect until you assign it to one or more Entries.
You can assign a password policy to the following Entries. Only one [Universal Password Policy|NspmPasswordPolicy] is effective for a user at a time. NMAS determines which policy is effective for a user by at attribute [nspmPasswordPolicyDN] which determines specific [nspmPasswordPolicy] for the entry according in the __following order__ and applying the first one found: (IN THIS ORDER)
* Specific user assignment: If a password policy has been assigned specifically to the user, that policy is applied.
* Container: If the user has no specific assignment, NMAS applies the policy that is assigned to the container that holds the user.
** If you assign a policy to a container that is not the root of a partition, the policy assignment is __inherited only by users in that specific container__. If you want the policy to apply to all users below a container that is not a partition root, you __must assign__ the policy to each subcontainer individually.
* [Partition Root Entry]: If no policy is assigned to the user or to the container directly above the user, the policy assigned to the partition root container is applied IF present.
** If you assign a policy to a container that is the root of a partition, the policy assignment is inherited by all users in that partition, including users in subcontainers.
* [Login Policy object|sASLoginPolicy]
** We recommend that you create a default password policy for all users in the tree. You do this by creating a policy and assigning it to the [Login Policy object|sASLoginPolicy]. The [Login Policy object|sASLoginPolicy] is located in the Security container just below the root of the tree.
The __first__ [nspmPasswordPolicyDN] value encountered is the [{$pagename}] for the entry.
If are no [nspmPasswordPolicyDN] value encountered then there is no [{$pagename}] for the entry.
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop