The Attribute Value Password Validator attempts to determine whether a proposed password is acceptable for use by determining whether that password is contained in any attribute within the user's entry.
It can be configured to look in all attributes or in a specified subset of attributes.
The Attribute Value Password Validator component inherits from the Password Validator
A description of each property follows.
| Basic Properties: | Advanced Properties: |
|---|---|
| ↓ check-substrings | ↓ java-class |
| ↓ enabled | |
| ↓ match-attribute | |
| ↓ min-substring-length | |
| ↓ test-reversed-password |
| Description | Indicates whether this password validator is to match portions of the password string against attribute values.If "false" then only match the entire password against attribute values otherwise ("true") check whether the password contains attribute values. |
| Default Value | true |
| Allowed Values | true false |
| Multi-valued | No |
| Required | No |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Indicates whether the password validator is enabled for use. |
| Default Value | None |
| Allowed Values | true false |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Specifies the name(s) of the attribute(s) whose values should be checked to determine whether they match the provided password. If no values are provided, then the server checks if the proposed password matches the value of any attribute in the user's entry. |
| Default Value | All attributes in the user entry will be checked. |
| Allowed Values | The name of an attribute type defined in the server schema. |
| Multi-valued | Yes |
| Required | No |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Indicates the minimal length of the substring within the password in case substring checking is enabled.If "check-substrings" option is set to true, then this parameter defines the length of the smallest word which should be used for substring matching. Use with caution because values below 3 might disqualify valid passwords. |
| Default Value | 5 |
| Allowed Values | An integer value. Lower value is 0. |
| Multi-valued | No |
| Required | No |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Indicates whether this password validator should test the reversed value of the provided password as well as the order in which it was given. |
| Default Value | None |
| Allowed Values | true false |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Specifies the fully-qualified name of the Java class that provides the password validator implementation. |
| Default Value | org.opends.server.extensions.AttributeValuePasswordValidator |
| Allowed Values | A java class that implements or extends the class(es) : org.opends.server.api.PasswordValidator |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | The Attribute Value Password Validator must be disabled and re-enabled for changes to this setting to take effect |
| Advanced Property | Yes |
| Read-only | No |