Filter password change requests on a LDAP Directory Service trigger system

You can configure the LDAP password synchronization to include certain users, groups, and domains when they make password change requests on LDAP Directory Service trigger systems.

To configure the user filters:

Modify the psldap configuration file in /usr/local/psunix/default/psunix.d/ .

Uncomment the following lines:

      #    filter-dn-include = { 
      #       "ou=finance,dc=example,dc=com"; 
      #       "ou=hr,dc=example,dc=com"; 
      #    };

Edit the filters with specific UIDs, OUs, and DCs to include in password change requests.
Filters are in the following syntax:
```
"uid=<userid>,ou=Bravura Group,dc=<domain>,dc=<com>";
```
Multiple filters can be used, with different levels of specificity. Users that pass any one of the filters will be included in password change requests.
For example:
```
     filter-dn-include = { 
         "dc=mydomain,dc=net"; 
         "ou=people,dc=example,dc=com"; 
         "uid=testuser,ou=finance,dc=example,dc=com"; 
      };  
```
Save the file and restart the LDAP service.

In this section:

Filter password change requests on a LDAP Directory Service trigger system

Search results