Additional LDAP Attributes for Password Modification, PSWD-EXP for ACF2
search cancel

Additional LDAP Attributes for Password Modification, PSWD-EXP for ACF2

book

Article ID: 260393

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

ACF2 mainframe connection for PAM to manage via LDAP. When PAM changes the password, the ID is being set with a PSWD-EXP flag which does not happen in the old PUPM tool we're migrating from.

On the mainframe Application, within PAM, there is "Additional LDAP Attributes for Password Modification" - How do you populate this to prevent PSWD-EXP flag?

 

 

Environment

Release : 4.1

Resolution

The following values would be set for "Additional LDAP Attributes for Password Modification"

Attribute Name = ExpirePassword

Attribute Value = N

This removes the PSWD-EXP flag during reset and allow validation of accounts now. 

Powered by Wolken Software