Directory Server

[xenia123]

Hi Guru's

Last month, i've already posted a thread about password aging in LDAP.

http://www.tek-tips.com/viewthread.cfm?qid=1167559&page=4

I tried everything hopefully out, but it didn't work.

This is an entry in my directory Server:

uid=x0158123,ou=people,dc=bla,dc=ch
shadowMin=2
shadowLastChange=13154 (Days passed since January 1. 1970)
shadowWarning=3
shadowMax=5
objectClass=shadowAccount
objectClass=top
objectClass=account
objectClass=posixAccount
gecos=blabla
uidNumber=1182
cn=bla bla
uid=x0158123
gidNumber=10
homeDirectory=/home/x0158123
loginShell=/bin/bash


Now, I'm looking for an option to add some password policies to each user in Sun One Directory Server

This option should do:
-Allows for tracking password aging and expiration.
-Prevents users from choosing trivial or previously used passwords.
-Warns users if their passwords are about to expire.
-Locks out users after repeated login failures.
-Prevents users, other than the authorized system administrator, from deactivating initialized accounts.

my question, is there something to configure in pam or something else?

Thank you in forward for any help and regards,
xenia123