public class PwPolicy extends FortEntity implements Serializable
name
.
Password enforcement options include:
1. organizationalRole Structural Object Class is used to store basic attributes like cn and description.
------------------------------------------ objectclass ( 2.5.6.14 NAME 'device' DESC 'RFC2256: a device' SUP top STRUCTURAL MUST cn MAY ( serialNumber $ seeAlso $ owner $ ou $ o $ l $ description ) ) ------------------------------------------
2. pwdPolicy AUXILIARY Object Class is used to store OpenLDAP Password Policies.
------------------------------------------ objectclass ( 1.3.6.1.4.1.42.2.27.8.2.1 NAME 'pwdPolicy' SUP top AUXILIARY MUST ( pwdAttribute ) MAY ( pwdMinAge $ pwdMaxAge $ pwdInHistory $ pwdCheckQuality $ pwdMinLength $ pwdExpireWarning $ pwdGraceAuthNLimit $ pwdLockout $ pwdLockoutDuration $ pwdMaxFailure $ pwdFailureCountInterval $ pwdMustChange $ pwdAllowUserChange $ pwdSafeModify ) ) ------------------------------------------
3. ftMods AUXILIARY Object Class is used to store Fortress audit variables on target entity.
------------------------------------------ Fortress Audit Modification Auxiliary Object Class objectclass ( 1.3.6.1.4.1.38088.3.4 NAME 'ftMods' DESC 'Fortress Modifiers AUX Object Class' AUXILIARY MAY ( ftModifier $ ftModCode $ ftModId ) ) ------------------------------------------
adminSession, contextId, modCode, modId, sequenceId
Constructor and Description |
---|
PwPolicy()
Default constructor is used by internal Fortress classes and not intended for external use.
|
PwPolicy(String name)
Create instance given a policy name.
|
Modifier and Type | Method and Description |
---|---|
boolean |
equals(Object thatObj)
Matches the name from two PwPolicy entities.
|
Boolean |
getAllowUserChange()
This optional attribute indicates whether users can change their own
passwords, although the change operation is still subject to access
control.
|
Short |
getCheckQuality()
This optional attribute is not currently supported by Fortress.
|
Long |
getExpireWarning()
This optional attribute specifies the maximum number of seconds before a
password is due to expire that expiration warning messages will be
returned to an authenticating user.
|
Short |
getFailureCountInterval()
This optional attribute holds the number of seconds after which the password
failures are purged from the failure counter, even though no
successful authentication occurred.
|
Short |
getGraceLoginLimit()
This optional attribute specifies the number of times an expired password can
be used to authenticate.
|
Short |
getInHistory()
This optional attribute specifies the maximum number of used passwords stored
in the pwdHistory attribute.
|
Boolean |
getLockout()
This optional attribute indicates, when its value is "TRUE", that the password
may not be used to authenticate after a specified number of
consecutive failed bind attempts.
|
Integer |
getLockoutDuration()
This optional attribute holds the number of seconds that the password cannot
be used to authenticate due to too many failed bind attempts.
|
Long |
getMaxAge()
This optional attribute holds the number of seconds after which a modified
password will expire.
|
Short |
getMaxFailure()
This optional attribute specifies the number of consecutive failed bind
attempts after which the password may not be used to authenticate.
|
Integer |
getMinAge()
This optional attribute holds the number of seconds that must elapse between
modifications to the password.
|
Short |
getMinLength()
When quality checking is enabled, this optional attribute holds the minimum
number of characters that must be used in a password.
|
Boolean |
getMustChange()
This optional attribute specifies with a value of "TRUE" that users must
change their passwords when they first bind to the directory after a
password is set or reset by a password administrator.
|
String |
getName()
Get the policy name associated with this instance.
|
Boolean |
getSafeModify()
This optional attribute specifies whether or not the existing password must be
sent along with the new password when being changed.
|
int |
hashCode() |
void |
setAllowUserChange(Boolean allowUserChange)
This optional attribute indicates whether users can change their own
passwords, although the change operation is still subject to access
control.
|
void |
setCheckQuality(Short checkQuality)
This optional attribute is not currently supported by Fortress.
|
void |
setExpireWarning(Long expireWarning)
This optional attribute specifies the maximum number of seconds before a
password is due to expire that expiration warning messages will be
returned to an authenticating user.
|
void |
setFailureCountInterval(Short failureCountInterval)
This optional attribute holds the number of seconds after which the password
failures are purged from the failure counter, even though no
successful authentication occurred.
|
void |
setGraceLoginLimit(Short graceLoginLimit)
This optional attribute specifies the number of times an expired password can
be used to authenticate.
|
void |
setInHistory(Short inHistory)
This optional attribute specifies the maximum number of used passwords stored
in the pwdHistory attribute.
|
void |
setLockout(Boolean lockout)
This optional attribute indicates, when its value is "TRUE", that the password
may not be used to authenticate after a specified number of
consecutive failed bind attempts.
|
void |
setLockoutDuration(Integer lockoutDuration)
This optional attribute holds the number of seconds that the password cannot
be used to authenticate due to too many failed bind attempts.
|
void |
setMaxAge(Long maxAge)
This optional attribute holds the number of seconds after which a modified
password will expire.
|
void |
setMaxFailure(Short maxFailure)
This optional attribute specifies the number of consecutive failed bind
attempts after which the password may not be used to authenticate.
|
void |
setMinAge(Integer minAge)
This optional attribute holds the number of seconds that must elapse between
modifications to the password.
|
void |
setMinLength(Short minLength)
When quality checking is enabled, this optional attribute holds the minimum
number of characters that must be used in a password.
|
void |
setMustChange(Boolean mustChange)
This optional attribute specifies with a value of "TRUE" that users must
change their passwords when they first bind to the directory after a
password is set or reset by a password administrator.
|
void |
setName(String name)
Set the required attribute policy name on this entity.
|
void |
setSafeModify(Boolean safeModify)
This optional attribute specifies whether or not the existing password must be
sent along with the new password when being changed.
|
String |
toString() |
getAdminSession, getContextId, getModCode, getModId, getSequenceId, setAdminSession, setContextId, setModCode, setSequenceId
public PwPolicy()
public PwPolicy(String name)
name
- public String getName()
public void setName(String name)
name
- stored as 'cn' in 'pwdPolicy' object class.public Integer getMinAge()
public void setMinAge(Integer minAge)
minAge
- stored as 'pwdMinAge' in 'pwdPolicy' object class.public Long getMaxAge()
public void setMaxAge(Long maxAge)
maxAge
- attribute stored as 'pwdMaxAge' in 'pwdPolicy' object class.public Short getInHistory()
public void setInHistory(Short inHistory)
inHistory
- attribute stored as 'pwdInHistory' in 'pwdPolicy' object class.public Short getCheckQuality()
public void setCheckQuality(Short checkQuality)
checkQuality
- attribute stored as 'pwdCheckQuality' in 'pwdPolicy' object class.public Short getMinLength()
public void setMinLength(Short minLength)
minLength
- attribute stored as 'pwdMinLength' in 'pwdPolicy' object class.public Long getExpireWarning()
public void setExpireWarning(Long expireWarning)
expireWarning
- attribute stored as 'pwdExpireWarning' in 'pwdPolicy' object class.public Short getGraceLoginLimit()
public void setGraceLoginLimit(Short graceLoginLimit)
graceLoginLimit
- attribute stored as 'pwdGraceAuthNLimit' in 'pwdPolicy' object class.public Boolean getLockout()
public void setLockout(Boolean lockout)
lockout
- attribute stored as 'pwdLockout' in 'pwdPolicy' object class.public Integer getLockoutDuration()
public void setLockoutDuration(Integer lockoutDuration)
lockoutDuration
- attribute stored as 'pwdLockoutDuration' in 'pwdPolicy' object class.public Short getMaxFailure()
public void setMaxFailure(Short maxFailure)
maxFailure
- attribute stored as 'pwdMaxFailure' in 'pwdPolicy' object class.public Short getFailureCountInterval()
public void setFailureCountInterval(Short failureCountInterval)
failureCountInterval
- attribute stored as 'pwdFailureCountInterval' in 'pwdPolicy' object class.public Boolean getMustChange()
public void setMustChange(Boolean mustChange)
mustChange
- attribute stored as 'pwdMustChange' in 'pwdPolicy' object class.public Boolean getAllowUserChange()
public void setAllowUserChange(Boolean allowUserChange)
allowUserChange
- attribute stored as 'pwdAllowUserChange' in 'pwdPolicy' object class.public Boolean getSafeModify()
public void setSafeModify(Boolean safeModify)
safeModify
- attribute stored as 'pwdSafeModify' in 'pwdPolicy' object class.public boolean equals(Object thatObj)
public String toString()
toString
in class Object
Object.toString()
Copyright © 2003-2016, The Apache Software Foundation. All Rights Reserved. Generated 20160718-1621