Octet string known only to the user and the system to which the user has access.

Applications should prepare textual strings used as passwords by transcoding them to Unicode, applying SASLprep as described in RFC 4013, and encoding as UTF-8. The client must determine whether a password is a textual string.

Passwords are not encrypted during transport. If the underlying transport is not secure, transmission can result in disclosure of the password to unauthorized parties.

Origin RFC 4519
Usage userApplications
Equality Matching Rule octetStringMatch
Single Value false: multiple values allowed
Names userPassword
Ordering Matching Rule octetStringOrderingMatch
User Modification Allowed true
Used By dNSDomain, dmd, domain, inetOrgPerson, inetuser, ipHost, organization, organizationalPerson, organizationalUnit, person, pilotOrganization, pilotPerson, posixAccount, posixGroup, rFC822LocalPart, residentialPerson, shadowAccount, simpleSecurityObject, sunservicecomponent
Schema File 00-core.ldif
Syntax Octet String
Read a different version of :