The is used to determine whether a proposed password is acceptable based on whether the given password value appears the user's entry. 1.3.6.1.4.1.26027.1.2.96 ds-cfg-attribute-value-password-validator ds-cfg-password-validator Specifies the name(s) of the attribute(s) whose values should be checked to determine whether they match the provided password. If this is not provided, then all attributes in the user's entry will be checked. All attributes in the user entry will be checked. 1.3.6.1.4.1.26027.1.1.146 ds-cfg-match-attribute Indicates whether this password validator should test the reversed value of the provided password as well as the order in which it was given. 1.3.6.1.4.1.26027.1.1.337 ds-cfg-test-reversed-password