set password-mimic-netscape-response-controls Command

The set password-mimic-netscape-response-controls command adds LDAP response controls about password expiry to bind and compare responses. This command mimics the way that Netscape directories work with LDAP password response controls.
cad1215
The 
set password-mimic-netscape-response-controls
 command adds LDAP response controls about password expiry to bind and compare responses. This command mimics the way that Netscape directories work with LDAP password response controls.
For more information about the controls that are added to the responses, see the Sun Java System LDAP SDK for C Programming Guide.
This command has the following format:
set password-mimic-netscape-response-controls = true | false;
  •  
    true
    Includes the following LDAP response controls in bind and compare responses:
    •  
      The control with the OID 2.16.840.1.113730.3.4.4 
      (Or LDAP_CONTROL_PWEXPIRED, as defined in the ldap.h header file)
      This control is added to bind and confirm responses after the password has expired.
    •  
      The control with the OID 2.16.840.1.113730.3.4.5 
      (Or LDAP_CONTROL_PWEXPIRING, as defined in the ldap.h header file)
      The value for this control is the number of seconds before the password expires. This value is supplied in the set password-age-warning-period Command.
  •  
    false
    (Default) No extra controls are added to bind and compare responses.
set password-netscape-legacy-mode Command
When using the set password-mimic-netscape-response-controls command, the password bind responses include LDAP controls. These LDAP controls indicate when a password expires or if it has expired and requires updating. 
This command has the following format:
set password-netscape-legacy-mode = true | false;
 
Default:
 false
The format of the response controls has been updated to comply with https://tools.ietf.org/html/draft-vchu-ldap-pwd-policy-00. If applications are created using the previous (noncompliant) format, then they can be reinstated by using the command “set password-netscape-legacy-mode = true;”.