Directory Services 7.4.3

Password Modify Extended Operation Handler

The Password Modify Extended Operation Handler allows end users to change their own passwords, or administrators to reset user passwords.

The password modify extended operation is defined in RFC 3062. It includes the ability for users to provide their current password for further confirmation of their identity when changing the password, and it also includes the ability to generate a new password if the user does not provide one.

Parent

The Password Modify Extended Operation Handler object inherits from Extended Operation Handler.

Dependencies

Password Modify Extended Operation Handlers depend on the following objects:

Password Modify Extended Operation Handler properties

You can use configuration expressions to set property values at startup time. For details, see Property value substitution.

Basic Properties Advanced Properties

enabled
identity-mapper

java-class

Basic properties

Use the --advanced option to access advanced properties.

enabled

Synopsis

Indicates whether the Extended Operation Handler is enabled (that is, whether the types of extended operations are allowed in the server).

Default value

None

Allowed values

true

false

Multi-valued

No

Required

Yes

Admin action required

None

Advanced

No

Read-only

No

identity-mapper

Synopsis

Specifies the name(s) of the identity mapper(s) that should be used in conjunction with the password modify extended operation.

Description

This property is used to identify a user based on an authorization ID in the 'u:' form. Changes to this property take effect immediately.

Default value

None

Allowed values

The name of an existing identity-mapper.

The referenced identity mapper(s) must be enabled when the Password Modify Extended Operation Handler is enabled.

Multi-valued

Yes

Required

Yes

Admin action required

None

Advanced

No

Read-only

No

Advanced properties

Use the --advanced option to access advanced properties.

java-class

Synopsis

Specifies the fully-qualified name of the Java class that provides the Password Modify Extended Operation Handler implementation.

Default value

org.opends.server.extensions.PasswordModifyExtendedOperation

Allowed values

A Java class that extends or implements:

  • org.opends.server.api.ExtendedOperationHandler

Multi-valued

No

Required

Yes

Admin action required

The object must be disabled and re-enabled for changes to take effect.

Advanced

Yes

Read-only

No

Copyright © 2010-2024 ForgeRock, all rights reserved.