Password-related attributes
The next table shows password-related attributes. They are relevant for the LDAP Connector plugin.
Attribute name (examples) | Usage | Type | LDAP Connector plugin | LDAP Token List Persister plugin | LDAP Password Self- Service Token Persister plugin |
|---|---|---|---|---|---|
| Password attribute. Required for password change and reset. | LDAP password attribute | O | ||
| Flag telling whether the user must change the password at the next login. Defaults to false. | Boolean | O | ||
| Flag telling whether a new password letter should be generated for this user. Used in batch jobs. Defaults to false. | Boolean | O | ||
| User that ordered the password. | String | O | ||
| Date/time that the password was ordered. | Timestamp | O | ||
| Date and time of the latest password change by the user. May be empty. | Timestamp | O | ||
| Date and time when the user must change the password the next time. May be empty. | Timestamp | O | ||
| Date and time of the latest password generation by an Airlock IAM batch job or by the administrator. | Timestamp | O | ||
| Date and time of the latest delivery of a password. This is, e.g., when a password has been sent to a printer. This is usually the same as the generation date. | Timestamp | O |
- R = Required by plugin
- O = Optional, may be used by plugin