A Forum reader recently asked:

“I’m trying to create a pushback rule on password changes on a eDir2eDir driver with a distribution password. I have pushback rules working on regular attributes, but I can’t get it to work here. Is this possible to do?”

And here’s the response from Jeff Johnson …


Here is a rule I have on the publisher-matching of an eDir2eDir driver. If a certain criteria is met on this match, the password is pushed back. This may help you.

  <description>If match found on ADD force Vault password back to NOS if Staff or Faculty</description>
      <if-op-attr mode="nocase" name="StudentADD" op="equal">true</if-op-attr>
      <if-op-attr mode="nocase" name="eduPersonAffiliation" op="equal">staff</if-op-attr>
      <if-op-attr mode="nocase" name="eduPersonAffiliation" op="equal">faculty</if-op-attr>
        <token-dest-attr class-name="User" name="nspmDistributionPassword"/>

0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this post.

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Leave a Reply

No Comments
By: jedijeff
Jun 27, 2007
9:58 am
Active Directory Authentication Automation Cloud Computing Cloud Security Configuration Customizing Data Breach DirXML Drivers End User Management Identity Manager Importing-Exporting / ICE/ LDIF Intelligent Workload Management IT Security Knowledge Depot LDAP Monitoring Open Enterprise Server Passwords Reporting Secure Access Supported Troubleshooting Workflow