Use constraints to enforce max-password-length >= min-password-length The is used to determine whether a proposed password is acceptable based on whether the number of characters it contains falls within an acceptable range of values. Both upper and lower bounds may be defined. ds-cfg-length-based-password-validator ds-cfg-password-validator org.opends.server.extensions.LengthBasedPasswordValidator Specifies the maximum number of characters that can be included in a proposed password. A value of zero indicates that there will be no upper bound enforced. If both minimum and maximum lengths are defined, then the minimum length must be less than or equal to the maximum length. 0 ds-cfg-max-password-length Specifies the minimum number of characters that must be included in a proposed password. A value of zero indicates that there will be no lower bound enforced. If both minimum and maximum lengths are defined, then the minimum length must be less than or equal to the maximum length. 6 ds-cfg-min-password-length