How To Expire a New Password on An Existing Acid?

book

Article ID: 19259

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - DB2 Option CA ACF2 for zVM CA ACF2 - z/OS CA ACF2 - MISC CA-24X7 High-Availability Manager for DB2 for z/OS CA-Batch Processor Compile QQF CA Data Compressor for DB2 for z/OS Data Navigator for DB2 UDB for z/OS CA-DB Delivery for DB2 CA Unicenter NSM CA Log Compress DBA for DB2 Guide Online CA InfoRefiner Advantage InfoRefiner Advantage InfoRefiner Maint Upgrade CA InfoTransport Advantage InfoTransport Maint Upgrade Online Reorg for DB2 for z/OS CA RC/Update for DB2 for z/OS Query Analyzer RI Editor for DB2 for z/OS DB2 TOOLS- DATABASE MISC CA PanApt CA PanAudit CA Top Secret CA Top Secret - LDAP

Issue/Introduction

Description:

We have an existing acid and we would like to change its password, but we also would like to expire it at next logon.

How do we do that?

Solution:

Here it an example of ldapmodify command and its ldif file to create a new acid with an expired password:

ldapmodify -c -h YourHostName -p 389 -D cn=Admin -w password -x -f Your.ldif

YourHostName is your TCPIP name of your Host.
389 is the default port, use yours.
Admin is the administrator acid.
Your.ldif is your ldif file which contains what follows between the Top and End boundaries.

*** Top Of Ldif ****
dn: tssacid=myacid,tssadmingrp=acids,host=usi252me,o=ca,c=us
changetype: modify
replace: userPassword
userPassword: USRPWD,,EXP
*** End Of Ldif ***

The dn: has to fit your host definition, see your slapd.conf suffix field.

Environment

Release:
Component: LDAPDV