PasswordPolicyTestCase.java revision 530e312594f469609337996570cf0ea504554a68
/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License, Version 1.0 only
* (the "License"). You may not use this file except in compliance
* with the License.
*
* You can obtain a copy of the license at legal-notices/CDDLv1_0.txt
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at legal-notices/CDDLv1_0.txt.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information:
* Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*
*
* Copyright 2006-2008 Sun Microsystems, Inc.
* Portions Copyright 2011-2014 ForgeRock AS
*/
/**
* A set of generic test cases for the Directory Server password policy class.
*/
public class PasswordPolicyTestCase
extends CoreTestCase
{
/**
* Ensures that the Directory Server is running.
*
* @throws Exception If an unexpected problem occurs.
*/
@BeforeClass()
public void startServer()
throws Exception
{
}
/**
* Retrieves a set of invalid configurations that cannot be used to
* initialize a password policy.
*
* @return A set of invalid configurations that cannot be used to
* initialize a password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
public Object[][] getInvalidConfigurations()
throws Exception
{
"dn: cn=Default Password Policy 1,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 2,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: invalid",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 3,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: cn",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 4,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-last-login-time-attribute: invalid",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 5,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: invalid",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 6,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: invalid",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 7,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: invalid",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 8,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: invalid",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 9,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: invalid",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 10,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: invalid",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 11,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: invalid",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 12,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: invalid",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 13,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: invalid",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 14,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: invalid",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 15,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: invalid",
"",
"dn: cn=Default Password Policy 16,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: -1",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 17,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: notnumeric",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 18,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: -1 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 19,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: notnumeric seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 20,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 21,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 invalid",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 22,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: invalid",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 23,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: -1 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 24,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: notnumeric seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 25,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: -1 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 26,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 invalid",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 27,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: invalid",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 28,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: -1",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 29,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: notnumeric",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 30,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: -1 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 31,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: notnumeric seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 32,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 33,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 invalid",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 34,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: invalid",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 35,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: -1 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 36,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: invalid seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 37,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 38,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 invalid",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 39,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: invalid",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 40,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: -1 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 41,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: invalid seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 42,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 43,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 invalid",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 44,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: invalid",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 45,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: -1 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 46,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: invalid seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 47,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 48,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 invalid",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 49,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: invalid",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 50,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 0 seconds",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 51,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: -1 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 52,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: invalid days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 53,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 54,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 invalid",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 55,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: invalid",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 56,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-require-change-by-time: invalid",
"",
"dn: cn=Default Password Policy 57,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-last-login-time-format: invalid",
"",
"dn: cn=Default Password Policy 58,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: invalid",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 59,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=nonexistent," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 60,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-account-status-notification-handler: invalid",
"",
"dn: cn=Default Password Policy 61,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-account-status-notification-handler: cn=nonexistent," +
"cn=Account Status Notification Handlers,cn=config",
"",
"dn: cn=Default Password Policy 62,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 63,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Undefined,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 64,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: invalid",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"",
"dn: cn=Default Password Policy 65,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-password-validator: invalid",
"",
"dn: cn=Default Password Policy 66,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-password-validator: cn=nonexistent," +
"cn=Password Validators,cn=config",
"",
"dn: cn=Default Password Policy 67,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: 0 seconds",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-previous-last-login-time-format: invalid",
"",
// This is a catch-all invalid case to get coverage for attributes not
// normally included in the default scheme. It is based on the internal
// knowledge that the idle lockout interval is the last attribute checked
// during validation.
"dn: cn=Default Password Policy 68,cn=Password Policies,cn=config",
"objectClass: top",
"objectClass: ds-cfg-password-policy",
"cn: Default Password Policy",
"ds-cfg-password-attribute: userPassword",
"ds-cfg-default-password-storage-scheme: " +
"cn=Salted SHA-1,cn=Password Storage Schemes,cn=config",
"ds-cfg-deprecated-password-storage-scheme: " +
"cn=BASE64,cn=Password Storage Schemes,cn=config",
"ds-cfg-allow-expired-password-changes: false",
"ds-cfg-allow-multiple-password-values: false",
"ds-cfg-allow-pre-encoded-passwords: false",
"ds-cfg-allow-user-password-changes: true",
"ds-cfg-expire-passwords-without-warning: false",
"ds-cfg-force-change-on-add: false",
"ds-cfg-force-change-on-reset: false",
"ds-cfg-grace-login-count: 0",
"ds-cfg-idle-lockout-interval: invalid",
"ds-cfg-lockout-failure-count: 0",
"ds-cfg-lockout-duration: 0 seconds",
"ds-cfg-lockout-failure-expiration-interval: 0 seconds",
"ds-cfg-min-password-age: 0 seconds",
"ds-cfg-max-password-age: 0 seconds",
"ds-cfg-max-password-reset-age: 0 seconds",
"ds-cfg-password-expiration-warning-interval: 5 days",
"ds-cfg-password-generator: cn=Random Password Generator," +
"cn=Password Generators,cn=config",
"ds-cfg-password-change-requires-current-password: false",
"ds-cfg-require-secure-authentication: false",
"ds-cfg-require-secure-password-changes: false",
"ds-cfg-skip-validation-for-administrators: false",
"ds-cfg-require-change-by-time: 20060101000000Z",
"ds-cfg-last-login-time-attribute: ds-pwp-last-login-time",
"ds-cfg-last-login-time-format: yyyyMMdd",
"ds-cfg-previous-last-login-time-format: yyyyMMddHHmmss",
"ds-cfg-account-status-notification-handler: " +
"cn=Error Log Handler,cn=Account Status Notification Handlers," +
"cn=config");
{
}
return configEntries;
}
/**
* Ensures that password policy creation will fail when given an invalid
* configuration.
*
* @param e The entry containing an invalid password policy configuration.
*
* @throws Exception If an unexpected problem occurs.
*/
expectedExceptions = { ConfigException.class,
InitializationException.class })
public void testInvalidConstructor(Entry e)
throws Exception
{
configEntry.getEntry());
}
/**
* Tests the <CODE>getPasswordAttribute</CODE> method for the default password
* policy.
*/
@Test()
public void testGetPasswordAttributeDefault()
{
AttributeType t = p.getPasswordAttribute();
}
/**
* Tests the <CODE>getPasswordAttribute</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordAttributeAuth()
throws Exception
{
"cn=config");
AttributeType t = p.getPasswordAttribute();
}
/**
* Tests the <CODE>usesAuthPasswordSyntax</CODE> method for the default
* password policy.
*/
@Test()
public void testUsesAuthPasswordSyntaxDefault()
{
}
/**
* Tests the <CODE>usesAuthPasswordSyntax</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testUsesAuthPasswordSyntaxAuth()
throws Exception
{
"cn=config");
}
/**
* Tests the <CODE>getDefaultStorageSchemes</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetDefaultStorageSchemesDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "default-password-storage-scheme:Base64");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "default-password-storage-scheme:Salted SHA-1");
}
/**
* Tests the <CODE>getDefaultStorageSchemes</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetDefaultStorageSchemesAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "default-password-storage-scheme:Salted MD5");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "default-password-storage-scheme:Salted SHA-1");
}
/**
* Tests the <CODE>isDefaultStorageScheme</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testIsDefaultStorageSchemeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "default-password-storage-scheme:BASE64");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "default-password-storage-scheme:Salted SHA-1");
}
/**
* Tests the <CODE>isDefaultStorageScheme</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testIsDefaultStorageSchemeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "default-password-storage-scheme:Salted MD5");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "default-password-storage-scheme:Salted SHA-1");
}
/**
* Tests the <CODE>getDeprecatedStorageSchemes</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetDeprecatedStorageSchemesDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "deprecated-password-storage-scheme:BASE64");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "deprecated-password-storage-scheme:BASE64");
}
/**
* Tests the <CODE>getDeprecatedStorageSchemes</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetDeprecatedStorageSchemesAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "deprecated-password-storage-scheme:Salted MD5");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "deprecated-password-storage-scheme:Salted MD5");
}
/**
* Tests the <CODE>isDeprecatedStorageScheme</CODE> method for the default
* password storage scheme.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testIsDeprecatedStorageSchemeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "deprecated-password-storage-scheme:BASE64");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "deprecated-password-storage-scheme:BASE64");
}
/**
* Tests the <CODE>isDeprecatedStorageScheme</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testIsDeprecatedStorageSchemeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "deprecated-password-storage-scheme:Salted MD5");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "deprecated-password-storage-scheme:Salted MD5");
}
/**
* Tests the <CODE>getPasswordValidators</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordValidatorsDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--add", "password-validator:Length-Based Password Validator");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "password-validator:Length-Based Password Validator");
}
/**
* Tests the <CODE>getPasswordValidators</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordValidatorsAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--add", "password-validator:Length-Based Password Validator");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "password-validator:Length-Based Password Validator");
}
/**
* Tests the <CODE>getAccountStatusNotificationHandlers</CODE> method for the
* default password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetAccountStatusNotificationHandlersDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--add", "account-status-notification-handler:Error Log Handler");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "account-status-notification-handler:Error Log Handler");
}
/**
* Tests the <CODE>getAccountStatusNotificationHandlers</CODE> method for a
* password policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetAccountStatusNotificationHandlersAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--add", "account-status-notification-handler:Error Log Handler");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "account-status-notification-handler:Error Log Handler");
}
/**
* Tests the <CODE>allowUserPasswordChanges</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowUserPasswordChangesDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-user-password-changes:false");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-user-password-changes:true");
}
/**
* Tests the <CODE>allowUserPasswordChanges</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowUserPasswordChangesAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-user-password-changes:false");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-user-password-changes:true");
}
/**
* Tests the <CODE>requireCurrentPassword</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testRequireCurrentPasswordDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-change-requires-current-password:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-change-requires-current-password:false");
}
/**
* Tests the <CODE>requireCurrentPassword</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testRequireCurrentPasswordAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "password-change-requires-current-password:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "password-change-requires-current-password:false");
}
/**
* Tests the <CODE>forceChangeOnAdd</CODE> method for the default password
* policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testForceChangeOnAddDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "force-change-on-add:true");
assertTrue(p.isForceChangeOnAdd());
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "force-change-on-add:false");
}
/**
* Tests the <CODE>forceChangeOnAdd</CODE> method for a password policy using
* the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testForceChangeOnAddAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "force-change-on-add:true");
assertTrue(p.isForceChangeOnAdd());
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "force-change-on-add:false");
}
/**
* Tests the <CODE>forceChangeOnReset</CODE> method for the default password
* policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testForceChangeOnResetDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "force-change-on-reset:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "force-change-on-reset:false");
}
/**
* Tests the <CODE>forceChangeOnReset</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testForceChangeOnResetAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "force-change-on-reset:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "force-change-on-reset:false");
}
/**
* Tests the <CODE>skipValidationForAdministrators</CODE> method for the
* default password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testSkipValidationForAdministratorsDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "skip-validation-for-administrators:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "skip-validation-for-administrators:false");
}
/**
* Tests the <CODE>skipValidationForAdministrators</CODE> method for a
* password policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testSkipValidationForAdministratorsAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "skip-validation-for-administrators:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "skip-validation-for-administrators:false");
}
/**
* Tests the <CODE>getPasswordGenerator</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordGeneratorDNDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "password-generator:Random Password Generator");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-generator:Random Password Generator");
}
/**
* Tests the <CODE>getPasswordGenerator</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordGeneratorDNAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "password-generator:Random Password Generator");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "password-generator:Random Password Generator");
}
/**
* Tests the <CODE>getPasswordGenerator</CODE> method for the default password
* policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordGeneratorDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "password-generator:Random Password Generator");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-generator:Random Password Generator");
}
/**
* Tests the <CODE>getPasswordGenerator</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPasswordGeneratorAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "password-generator:Random Password Generator");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "password-generator:Random Password Generator");
}
/**
* Tests the <CODE>requireSecureAuthentication</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testRequireSecureAuthenticationDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "require-secure-authentication:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "require-secure-authentication:false");
}
/**
* Tests the <CODE>requireSecureAuthentication</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testRequireSecureAuthenticationAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "require-secure-authentication:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "require-secure-authentication:false");
}
/**
* Tests the <CODE>requireSecurePasswordChanges</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testRequireSecurePasswordChangesDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "require-secure-password-changes:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "require-secure-password-changes:false");
}
/**
* Tests the <CODE>requireSecurePasswordChanges</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testRequireSecurePasswordChangesAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "require-secure-password-changes:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "require-secure-password-changes:false");
}
/**
* Tests the <CODE>allowMultiplePasswordValues</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowMultiplePasswordValuesDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-multiple-password-values:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-multiple-password-values:false");
}
/**
* Tests the <CODE>allowMultiplePasswordValues</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowMultiplePasswordValuesAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-multiple-password-values:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-multiple-password-values:false");
}
/**
* Tests the <CODE>allowPreEncodedPasswords</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowPreEncodedPasswordsDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-pre-encoded-passwords:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-pre-encoded-passwords:false");
}
/**
* Tests the <CODE>allowPreEncodedPasswords</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowPreEncodedPasswordsAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-pre-encoded-passwords:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-pre-encoded-passwords:false");
}
/**
* Tests the <CODE>getMinPasswordAge</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetMinimumPasswordAgeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "min-password-age:24 hours");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "min-password-age:0 seconds");
}
/**
* Tests the <CODE>getMinPasswordAge</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetMinimumPasswordAgeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "min-password-age:24 hours");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "min-password-age:0 seconds");
}
/**
* Tests the <CODE>getMaxPasswordAge</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetMaximumPasswordAgeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "max-password-age:90 days");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "max-password-age:0 seconds");
}
/**
* Tests the <CODE>getMaxPasswordAge</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetMaximumPasswordAgeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "max-password-age:90 days");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "max-password-age:0 seconds");
}
/**
* Tests the <CODE>getMaxPasswordResetAge</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetMaximumPasswordResetAgeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "max-password-reset-age:24 hours");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "max-password-reset-age:0 seconds");
}
/**
* Tests the <CODE>getMaxPasswordResetAge</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetMaximumPasswordResetAgeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "max-password-reset-age:24 hours");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "max-password-reset-age:0 seconds");
}
/**
* Tests the <CODE>getWarningInterval</CODE> method for the default password
* policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetWarningIntervalDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-expiration-warning-interval:24 hours");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-expiration-warning-interval:5 days");
}
/**
* Tests the <CODE>getWarningInterval</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetWarningIntervalAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "password-expiration-warning-interval:24 hours");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "password-expiration-warning-interval:5 days");
}
/**
* Tests the <CODE>expirePasswordsWithoutWarning</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testExpirePasswordsWithoutWarningDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "expire-passwords-without-warning:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "expire-passwords-without-warning:false");
}
/**
* Tests the <CODE>expirePasswordsWithoutWarning</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testExpirePasswordsWithoutWarningAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "expire-passwords-without-warning:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "expire-passwords-without-warning:false");
}
/**
* Tests the <CODE>allowExpiredPasswordChanges</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowExpiredPasswordChangesDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-expired-password-changes:true");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "allow-expired-password-changes:false");
}
/**
* Tests the <CODE>allowExpiredPasswordChanges</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testAllowExpiredPasswordChangesAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-expired-password-changes:true");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "allow-expired-password-changes:false");
}
/**
* Tests the <CODE>getGraceLoginCount</CODE> method for the default password
* policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetGraceLoginCountDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "grace-login-count:3");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "grace-login-count:0");
}
/**
* Tests the <CODE>getGraceLoginCount</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetGraceLoginCountAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "grace-login-count:3");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "grace-login-count:0");
}
/**
* Tests the <CODE>getLockoutFailureCount</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLockoutFailureCountDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "lockout-failure-count:3");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "lockout-failure-count:0");
}
/**
* Tests the <CODE>getLockoutFailureCount</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLockoutFailureCountAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "lockout-failure-count:3");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "lockout-failure-count:0");
}
/**
* Tests the <CODE>getLockoutDuration</CODE> method for the default password
* policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLockoutDurationDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "lockout-duration:15 minutes");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "lockout-duration:0 seconds");
}
/**
* Tests the <CODE>getLockoutDuration</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLockoutDurationAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "lockout-duration:15 minutes");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "lockout-duration:0 seconds");
}
/**
* Tests the <CODE>getLockoutFailureExpirationInterval</CODE> method for the
* default password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLockoutFailureExpirationIntervalDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "lockout-failure-expiration-interval:10 minutes");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "lockout-failure-expiration-interval:0 seconds");
}
/**
* Tests the <CODE>getLockoutFailureExpirationInterval</CODE> method for a
* password policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLockoutFailureExpirationIntervalAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "lockout-failure-expiration-interval:10 minutes");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "lockout-failure-expiration-interval:0 seconds");
}
/**
* Tests the <CODE>getRequireChangeByTime</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetRequireChangeByTimeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "require-change-by-time:19700101000001Z");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "require-change-by-time:19700101000001Z");
}
/**
* Tests the <CODE>getRequireChangeByTime</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetRequireChangeByTimeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "require-change-by-time:19700101000001Z");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "require-change-by-time:19700101000001Z");
}
/**
* Tests the <CODE>getLastLoginTimeAttribute</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLastLoginTimeAttributeDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "last-login-time-attribute:ds-pwp-last-login-time");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "last-login-time-attribute:ds-pwp-last-login-time");
}
/**
* Tests the <CODE>getLastLoginTimeAttribute</CODE> method for a password
* policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLastLoginTimeAttributeAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "last-login-time-attribute:ds-pwp-last-login-time");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "last-login-time-attribute:ds-pwp-last-login-time");
}
/**
* Tests the <CODE>getLastLoginTimeFormat</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLastLoginTimeAttributeFormatDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "last-login-time-format:yyyyMMdd");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "last-login-time-format:yyyyMMdd");
}
/**
* Tests the <CODE>getLastLoginTimeFormat</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetLastLoginTimeFormatAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "last-login-time-format:yyyyMMdd");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "last-login-time-format:yyyyMMdd");
}
/**
* Tests the <CODE>getPreviousLastLoginTimeFormats</CODE> method for the
* default password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPreviousLastLoginTimeFormatsDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "previous-last-login-time-format:yyyyMMdd");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--remove", "previous-last-login-time-format:yyyyMMdd");
}
/**
* Tests the <CODE>getPreviousLastLoginTimeFormats</CODE> method for a
* password policy using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetPreviousLastLoginTimeFormatsAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "previous-last-login-time-format:yyyyMMdd");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--remove", "previous-last-login-time-format:yyyyMMdd");
}
/**
* Tests the <CODE>getIdleLockoutInterval</CODE> method for the default
* password policy.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetIdleLockoutIntervalDefault()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "idle-lockout-interval:90 days");
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "idle-lockout-interval:0 seconds");
}
/**
* Tests the <CODE>getIdleLockoutInterval</CODE> method for a password policy
* using the authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testGetIdleLockoutIntervalAuth()
throws Exception
{
"cn=config");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "idle-lockout-interval:90 days");
"set-password-policy-prop",
"--policy-name", "SHA1 AuthPassword Policy",
"--set", "idle-lockout-interval:0 seconds");
}
/**
* Tests the ability of a user to bind to the server when their account
* includes the pwdReset operational attribute and last login time tracking is
* enabled.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testResetWithLastLoginTime()
throws Exception
{
"dn: uid=test.user,o=test",
"objectClass: top",
"objectClass: person",
"objectClass: organizationalPerson",
"objectClass: inetOrgPerson",
"uid: test.user",
"givenName: Test",
"sn: User",
"cn: Test User",
"userPassword: oldpassword",
"ds-privilege-name: bypass-acl"
);
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "force-change-on-reset:true",
"--set", "last-login-time-attribute:ds-pwp-last-login-time",
"--set", "last-login-time-format:yyyyMMdd");
try
{
TestCaseUtils.applyModifications(false,
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newpassword");
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newnewpassword"
);
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "newpassword",
"-f", path
};
}
finally
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "force-change-on-reset:false",
"--remove", "last-login-time-attribute:ds-pwp-last-login-time",
"--remove", "last-login-time-format:yyyyMMdd");
}
}
/**
* Sleep until we can be sure that the time thread has been updated.
*
* Otherwise, password changes can all appear to be in the same
* millisecond and really weird things start to happen because of the way
* that we handle conflicts in password history timestamps. In short, if
* the history is already at the maximum count and all the previous
* changes occurred in the same millisecond as the new change, then it's
* possible for a new change to come with a timestamp that is before the
* timestamps of all the existing values.
*
* @throws InterruptedException
*/
private void advanceTimeThread() throws InterruptedException
{
{
}
}
/**
* Check there are 3 securely stored passwords in the entry's password history.
*
* @param dn The entry to check.
*
* @return The password history.
*/
throws DirectoryException
{
for (ByteString v : historyAttr)
{
}
return historyAttr;
}
/**
* Use multiple storage schemes in the policy. Verify that history only
* contains one secure version of each password, is truncated correctly,
* and continues to change after reaching maximum.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testHistoryWithMultipleSchemes()
throws Exception
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-history-count:3",
"--set", "default-password-storage-scheme:Base64",
"--set", "default-password-storage-scheme:Salted SHA-256");
"dn: uid=test.user,o=test",
"objectClass: top",
"objectClass: person",
"objectClass: organizationalPerson",
"objectClass: inetOrgPerson",
"uid: test.user",
"givenName: Test",
"sn: User",
"cn: Test User",
"userPassword: originalPassword",
"ds-privilege-name: bypass-acl");
try
{
// Change the password three times.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword1",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword2",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword3");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "originalPassword",
"-f", newPWsPath
};
0);
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword4");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "newPassword3",
"-f", newPWsPath
};
0);
// check history is now different (OPENDJ-1497)
}
finally
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "default-password-storage-scheme:Salted SHA-1",
"--set", "password-history-count:0");
}
}
/**
* Tests the Directory Server's password history maintenance capabilities
* using only the password history count configuration option.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testPasswordHistoryUsingCount()
throws Exception
{
"dn: uid=test.user,o=test",
"objectClass: top",
"objectClass: person",
"objectClass: organizationalPerson",
"objectClass: inetOrgPerson",
"uid: test.user",
"givenName: Test",
"sn: User",
"cn: Test User",
"userPassword: originalPassword",
"ds-privilege-name: bypass-acl");
// Make sure that before we enable history features we can re-use the
// current password.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: originalPassword");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "originalPassword",
"-f", origPWPath
};
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-history-count:3");
try
{
// Make sure that we cannot re-use the original password as a new
// password.
0);
// Change the password three times.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword1",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword2",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword3");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "originalPassword",
"-f", newPWsPath
};
0);
// Make sure that we still can't use the original password.
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "newPassword3",
"-f", origPWPath
};
0);
// Change the password one more time and then verify that we can use the
// original password again.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword4",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: originalPassword");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "newPassword3",
"-f", newPWsPath2
};
0);
// Make sure that we can't use the second new password.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword2");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "originalPassword",
"-f", firstPWPath
};
0);
// Reduce the password history count from 3 to 2 and verify that we can
// now use the second new password.
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-history-count:2");
0);
}
finally
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-history-count:0");
}
}
/**
* Tests the Directory Server's password history maintenance capabilities
* using only the password history duration configuration option.
*
* @throws Exception If an unexpected problem occurs.
*/
public void testPasswordHistoryUsingDuration()
throws Exception
{
"dn: uid=test.user,o=test",
"objectClass: top",
"objectClass: person",
"objectClass: organizationalPerson",
"objectClass: inetOrgPerson",
"uid: test.user",
"givenName: Test",
"sn: User",
"cn: Test User",
"userPassword: originalPassword",
"ds-privilege-name: bypass-acl");
// Make sure that before we enable history features we can re-use the
// current password.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: originalPassword");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "originalPassword",
"-f", origPWPath
};
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-history-duration:5 seconds");
try
{
// Make sure that we can no longer re-use the original password as a new
// password.
0);
// Change the password three times.
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword1",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword2",
"",
"dn: uid=test.user,o=test",
"changetype: modify",
"replace: userPassword",
"userPassword: newPassword3");
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "originalPassword",
"-f", newPWsPath
};
0);
// Make sure that we still can't use the original password.
{
"-h", "127.0.0.1",
"-D", "uid=test.user,o=test",
"-w", "newPassword3",
"-f", origPWPath
};
0);
// Sleep for six seconds and then verify that we can use the original
// password again.
0);
}
finally
{
"set-password-policy-prop",
"--policy-name", "Default Password Policy",
"--set", "password-history-duration:0 seconds");
}
}
/**
* Tests to ensure that the server will reject an attempt to set the password
* expiration warning interval to a value larger than the maximum password
* age.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testWarningIntervalGreaterThanMaxAge()
throws Exception
{
"dn: cn=Default Password Policy,cn=Password Policies,cn=config",
"changetype: modify",
"replace: ds-cfg-max-password-age",
"ds-cfg-max-password-age: 5 days",
"-",
"replace: ds-cfg-password-expiration-warning-interval",
"ds-cfg-password-expiration-warning-interval: 10 days");
{
"-h", "127.0.0.1",
"-D", "cn=Directory Manager",
"-w", "password",
"-f", path
};
0);
}
/**
* Tests to ensure that the server will reject an attempt to set the sum of
* the password expiration warning interval and the minimum password age to a
* value larger than the maximum password age.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testMinAgePlusWarningIntervalGreaterThanMaxAge()
throws Exception
{
"dn: cn=Default Password Policy,cn=Password Policies,cn=config",
"changetype: modify",
"replace: ds-cfg-max-password-age",
"ds-cfg-max-password-age: 5 days",
"-",
"replace: ds-cfg-min-password-age",
"ds-cfg-min-password-age: 3 days",
"-",
"replace: ds-cfg-password-expiration-warning-interval",
"ds-cfg-password-expiration-warning-interval: 3 days");
{
"-h", "127.0.0.1",
"-D", "cn=Directory Manager",
"-w", "password",
"-f", path
};
0);
}
/**
* Tests the <CODE>toString</CODE> methods with the default password policy.
*/
@Test()
public void testToStringDefault()
{
assertNotNull(p.toString());
}
/**
* Tests the <CODE>toString</CODE> methods with a password policy using the
* authentication password syntax.
*
* @throws Exception If an unexpected problem occurs.
*/
@Test()
public void testToStringAuth()
throws Exception
{
"cn=config");
assertNotNull(p.toString());
}
}