Chapter 20. Managing User Authentication
20.1. Setting User Passwords
userPasswordattribute and if it has not been inactivated. Because user passwords are stored in the directory, the user passwords can be set or reset with any LDAP operation, such as using the
pwdResetoperational attribute in the user's entry to
true. Applications can use this attribute to identify if a password of a user has been reset by an administrator.
Directory Manager(root DN) to set a password, password policies are bypassed and not verified. Do not use these accounts for regular user password management. Use them only to perform password administration tasks that require bypassing the password policies.