Don't bail out yet! 
 
 

References:

 

Overview Of Security

 
This module provides information on how to control access to your directory. You can either allow or deny access to your directory, and the mechanism by which you define these permissions is called the access control list (ACL). Your directory's ACL is comprised of a series of one or more access control information (ACI) instructions that allow or deny permissions such as read, write, search and compare. 

Using the ACL, you can set permissions for the entire directory, for a subset of the directory, for specific entries in the directory, or for a specific set of entry attributes. In addition, you can set permissions for a specific user, all users belonging to a specific group, or all users of the directory. Finally, you can also define access for a specific location such as an IP address or a DNS name. 

The Server Manager

You can use the Server Manager to:
  • Set up your password policy
  • Set the password storage scheme
  • Modify your password policy

Setting Up a Password Policy

You use the Server Manager Server Preferences | Password Policy form to set up your directory password policy. For information about what to enter in the Password Policy fields, see "Using the Password Policy Form". For general information about password policies, see "Understanding Password Policies". 

When you are done setting the password policy values, click OK and then click Apply. For the new password policy to take effect, you must restart the server.

Setting the Password Storage Scheme

You use the Server Preferences | LDAP form to set the password storage scheme. For information about the encryption options, see "Password Storage Scheme." For general information about password policies, see "Understanding Password Policies." 

When you are done setting the password storage scheme, click OK.
 

Modifying the Password Policy

You use the Server Manager Server Preferences | Password Policy form to modify your directory password policy. For information about what to enter in the Password Policy fields, see "Using the Password Policy Form". For general information about password policies, see "Understanding Password Policies". 

When you are changing the password policy values, click OK and then click Apply. For password policy changes to take effect, you must restart the server.

Setting or Resetting User Passwords

Because user passwords are stored in the directory, you can use whatever LDAP operation you normally use to update the directory to set or reset the user passwords. 

For information on creating and modifying directory entries, see Module 6: Managing Server Entries

You can also use the Users and Groups area of the administration server or the Directory Server gateway to set or reset user passwords. For information on how to use the Users and Groups area, see the online help that is available through the administration server. For information on how to use the gateway to create or modify directory entries, see the online help that is available through the gateway. 

 

Produced By Netscape Learning.  Copyright © 1998 Netscape Communications, Inc.