PwdInHistory is an AttributeType
defined in Draft-behera-ldap-password-policy
and used within several LDAP Server Implementations
If pwdInHistory is present and its value is non-zero, the server checks whether this password exists in the entry's pwdHistory attribute or in the current password attribute.
If the password does exist in the pwdHistory attribute or in the current password attribute, the server sends a response message to the client with the resultCode: constraintViolation (19), and includes the passwordPolicyResponse in the controls field of the response message with the error: passwordInHistory (8).
If this attribute is not present, or if the value is 0, used passwords are not stored in the pwdHistory attribute and thus may be reused.
The PwdInHistory AttributeTypes
is defined as:
PwdInHistory specifies the maximum number of used passwords
stored in the nspmPasswordHistory attribute
If PwdInHistory exists then the values of the nspmPasswordHistoryLimit, the nspmPasswordHistoryExpiration, and the PasswordUniqueRequired are ignored
There might be more information for this subject on one of the following: