I need an LDAP LDIF to Change Password, Remove Suspend and remove pswd-exp. I also need this for passphrase.

Document ID : KB000014591
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

I want to setup an LDAP request to change a user password, remove pswd-exp and laso remove suspend attribute

I also want this for passphrase.  

Answer:

LDAPMODIFY LDIF file input to change a passphrase and remove phraseexpired. 
dn: acf2UserPwphrase=userid,acf2lid=userid,acf2admingrp=lids,suffix 
changetype: modify 
replace: PasswordPhrase 
PasswordPhrase: apassphraseforme 

replace: ExpirePassphrase 
ExpirePassphrase: N 

LDAPMODIFY LDIF file input to change a password and remove pswd-exp and suspend 
dn: acf2lid=USERID,acf2admingrp=lids,suffix 
changetype: modify 
replace: userPassword 
UserPassword: NEWPASS 

replace: ExpirePassword 
ExpirePassword: N 

replace: SuspendedLid 
SuspendedLid: N

 

When changing a passphrase, you cannot remove SUSPEND from the logonid because the phrase and password are in different records.

You will need to run another ldapmodify request for the suspend..

 
dn: acf2lid=USERID,acf2admingrp=lids,suffix
changetype: modify
replace: SuspendedLid
SuspendedLid: N