Skip to main content

Password Policy for LDAP Directories

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors Jim Sermersheim , Ludovic Poitou , Howard Chu , Ondřej Kuzník
Last updated 2022-08-26 (Latest revision 2022-02-22)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


Password policy as described in this document is a set of rules that controls how passwords are used and administered in Lightweight Directory Access Protocol (LDAP) based directories. In order to improve the security of LDAP directories and make it difficult for password cracking programs to break into directories, it is desirable to enforce a set of rules on password usage. These rules are made to ensure that users change their passwords periodically, passwords meet construction requirements, the re-use of old password is restricted, and to deter password guessing attacks.


Jim Sermersheim
Ludovic Poitou
Howard Chu
Ondřej Kuzník

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)