Multiple password policies in a directory server system
First Claim
1. A method of implementing a password checking function based on password-related data in a directory server system comprising:
- organizing a plurality of user entries in a tree structure;
creating an additional entry, having attached password-related data;
attaching extra data to a given user entry, the extra data designating the additional entry; and
upon a call of the password checking function for the given entry, executing the password policy checking function for the given user entry based on the password-related data in the additional entry designated by the extra data of the given user entry.
2 Assignments
0 Petitions
Accused Products
Abstract
The invention proposes a directory server capable of interacting with entries organized in a tree structure in a directory server system. The entries comprise user entries. The directory server has a password checking function capable of checking the password for a user entry, based on password-related data. The password checking function is responsive to a user entry having extra data associated thereto, and identifying an additional entry, for executing a distinct password checking based on the password related data defined in that additional entry.
48 Citations
29 Claims
-
1. A method of implementing a password checking function based on password-related data in a directory server system comprising:
-
organizing a plurality of user entries in a tree structure;
creating an additional entry, having attached password-related data;
attaching extra data to a given user entry, the extra data designating the additional entry; and
upon a call of the password checking function for the given entry, executing the password policy checking function for the given user entry based on the password-related data in the additional entry designated by the extra data of the given user entry. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer-readable medium containing a plurality of instructions which when executed cause a directory server to provide a method of configuring password policies in a directory server system comprising:
-
organizing a plurality of user entries in a directory information tree;
creating an additional user entry in said directory information tree; and
attaching a given password policy to said additional user entry, wherein the password policy comprises;
an attribute attached to said additional user entry identifying said given password policy; and
an attribute value comprising a password policy rule. - View Dependent Claims (20, 21, 22, 23, 24, 25)
-
-
26. A computer-readable medium containing a plurality of instructions which when executed cause a directory server to implement a password policy checking method comprising:
-
receiving a binding request;
retrieving a corresponding user entry;
determining if said corresponding user entry has a password policy subentry attribute;
retrieving a password policy entry corresponding to said password policy subentry attribute, if said user entry has said password policy subentry attribute;
determining if said password policy entry is present;
retrieving a password policy subentry attribute value, if said user entry has said password policy subentry attribute and if said password policy entry is present; and
executing said password policy checking as a function of said password policy attribute value corresponding to said user entry, if said user entry has said password policy subentry attribute and if said password policy entry is present. - View Dependent Claims (27, 28, 29)
-
Specification