ACF2 mainframe connection for PAM to manage via LDAP. When PAM changes the password, the ID is being set with a PSWD-EXP flag which does not happen in the old PUPM tool we're migrating from.
On the mainframe Application, within PAM, there is "Additional LDAP Attributes for Password Modification" - How do you populate this to prevent PSWD-EXP flag?
Release : 4.1
The following values would be set for "Additional LDAP Attributes for Password Modification"
Attribute Name = ExpirePassword
Attribute Value = N
This removes the PSWD-EXP flag during reset and allow validation of accounts now.