Force users to change password with latest eDirectory version

After reading the latest changes that have been applied to eDirectory 9.2.7 regarding the management of password expiration date and pwdChangedTime., what do you think would be the best way to force all users of a directory to change their password?

Security auditors are asking for a procedure to be in place to allow this to happen if necessary, and it's not clear to me whether setting a passwordExpirationTime in the past would be sufficient.

Regards

José Luis

  • 0

    I am not familiar with the latest changes, but a few years ago we faced the same situation. It turned out to be impossible with eDirectory's Password Policies. In the end, we changed the policy so that many users had to change their password, but without a way to force all of them.