TDS – Password Policy
Hi folks,
Last time I got a bit of pain in my head when trying to configure the IBM Tivoli Directory Server (TDS) Password Policy. Finally I managed to do it and ran some test scenarios. This article describes the steps to configure the Password Policy in TDS and also shows some test scenario.
How to configure the password policy?
The first thing is that you go into the TDS Web Console
Click the “pwdpolicy” and then select All
Click “Next”
Make sure that you check the “Enabled”
Do the changes as necessary
Make sure that you choose the “Check Syntax” in he above screen
And then click “Finish”
Then assign the ACL appropriately
Go to the “Directory Management – Manage Entries”
Choose the “Edit ACL” and click “GO” button
On the “Effective ACL”, click “Load” or “Refresh”
View the “cn=anybody”
Make sure that you remember this ACL setting, because after you assign another ACL, this current ACL setting will be automatically removed by the TDS
Click the “Non-filtered ACLs”
Click the “Add” button
Use the “cn=this” which means that this ACL applies to the user to change attributes belong to himself
Make sure that you add “userPassword” into it and grant all access
Then put back the “cn=anybody” to the ACLs list
Then you should be able to see “cn=this” and “cn=anybody”
Testing the password policy (to be continued…)
leave a comment