From 5d41886efcd5bca748f86aab7f8ba68d05fc8335 Mon Sep 17 00:00:00 2001
From: Ludovic Poitou <ludovic.poitou@forgerock.com>
Date: Wed, 01 Dec 2010 13:01:33 +0000
Subject: [PATCH] Fix for OPENDJ-12 - Set the password policy for the Admin account the same as Root DNs to avoid expiration, lockout or must change on reset.

---
 opendj-sdk/opends/src/ads/org/opends/admin/ads/ADSContext.java |    5 +++++
 1 files changed, 5 insertions(+), 0 deletions(-)

diff --git a/opendj-sdk/opends/src/ads/org/opends/admin/ads/ADSContext.java b/opendj-sdk/opends/src/ads/org/opends/admin/ads/ADSContext.java
index fd93d9f..2fa7bb0 100644
--- a/opendj-sdk/opends/src/ads/org/opends/admin/ads/ADSContext.java
+++ b/opendj-sdk/opends/src/ads/org/opends/admin/ads/ADSContext.java
@@ -1668,6 +1668,11 @@
       privilegeAtt = addRootPrivileges();
     }
     attrs.put(privilegeAtt);
+
+    // Add the RootDNs Password policy so the password do not expire.
+    attrs.put("ds-pwp-password-policy-dn",
+        "cn=Root Password Policy,cn=Password Policies,cn=config");
+
     return attrs;
   }
 

--
Gitblit v1.10.0