Hello,
You are not even sourcing the created 'pwdpolicy.dxc' file from SETTINGS folder hence the problem. 'set default-password-policy = {policy-name};' is a separate thing in it's own.
From what you have done so far, try the following in SERVERES .dxi file instead of what you have mentioned:
source "../settings/pwdpolicy.dxc;"
That is the only change you need. Once done, restart the DSA.
Currently, with your setup I am sure even the start-up of DSA is failing due to wrong configuration item as there is no such command as 'set targeted-password-policy = /path/to/filename;'.
Targeted password policy is all about configuring multiple password policies per DSA instance. I suggest referring to Symantec Directory documentation further.
e.g.
https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/directory/14-1/administrating/manage-user-accounts-and-passwords/create-a-password-policy/example-password-policies.html~Hitesh
Original Message:
Sent: 09-27-2020 01:46 AM
From: Samarendra Routray
Subject: need steps to add password policy for CA Directory r14.1 version
Hi,
I am using CA Directory version 14.1 and want to create password policy. I am following below documentation for password policy configuration, but the password policy is not working. Could you please provide the simple steps to create and configure password policy.
Below are steps links I am following.
Step.1 : I create a file pwdpolicy.dxc in C:\Program Files\CA\Directory\dxserver\config\settings location.
---------------------------
pwdpolicy.dxc file content as below
--------------------
#file content start#
set password-policy = true;
set password-min-length = 8;
set password-numeric = 1;
set password-force-change = true;
set password-last-use = 60;
set password-force-change = true;
#file content Ends#
----------------------------
then I add below line in my dsa file UserStore.dxi in C:\Program Files\CA\Directory\dxserver\config\servers location
---------------------------
#password policy
set target-password-policy = "../settings/nicuserpwd.dxc";
Create a Password PolicyBroadcom | remove preview |
| Create a Password Policy | After you have planned your password policy, you need to configure the appropriate settings. Each policy rule is actually a command that you should include in a .dxc file in the DXHOME/config/settings folder. You can create rules to enforce the following: This section discusses the following topics: | View this on Broadcom > |
|
|
Create Multiple Password Policies for Each DSA
Broadcom | remove preview |
| Create Multiple Password Policies for Each DSA | In versions before Directory r12 SP12, each DSA could have only a single set of password rules. You could not apply different password policies to users stored within the same DSA. From Directory r12 SP12 onwards, you can apply multiple password policies to each DSA. | View this on Broadcom > |
|
|
Kindly provide me the steps and let me know if I am missing any configuration or need to correct anything.
Thanks
Samarendra Routray