Password Policy for LDAP Directories

Document Type Expired Internet-Draft (individual)
Authors Jim Sermersheim  , Ludovic Poitou  , Howard Chu 
Last updated 2009-08-09
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Password policy as described in this document is a set of rules that controls how passwords are used and administered in Lightweight Directory Access Protocol (LDAP) based directories. In order to improve the security of LDAP directories and make it difficult for password cracking programs to break into directories, it is desirable to enforce a set of rules on password usage. These rules are made to ensure that users change their passwords periodically, passwords meet construction requirements, the re-use of old password is restricted, and to deter password guessing attacks.


Jim Sermersheim (
Ludovic Poitou (
Howard Chu (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)