Password Data should be set to 0?

Document ID : KB000011601
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

We had a Password Data value set to 0 by a provisioning server, and when authenticating, the Password Data was not updated. We solved it by deleting the Password Data attribute, and authenticating again. Can you confirm why the Password Data should never be set to 0?

Answer:

The Password Data attribute must be a binary value, as it is encrypted by the Policy Server. So if a third party changes the value, the Policy Server will not be able to check the value and therefore will not be able update it accordingly.

Additional Information: