The documentation later tells you how to replicate these attributes:<div><span class="Apple-style-span" style="font-family: &#39;liberation sans&#39;, &#39;Myriad &#39;, &#39;Bitstream Vera Sans&#39;, &#39;Lucida Grande&#39;, &#39;Luxi Sans&#39;, &#39;Trebuchet MS&#39;, helvetica, verdana, arial, sans-serif; font-size: 12px; line-height: 15px; "><ul style="padding-left: 1.6em; list-style-image: url(http://www.redhat.com/docs/manuals/dir-server/8.1/admin/Common_Content/images/dot.png); list-style-type: circle; ">

<li class="listitem" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0px; margin-bottom: 0.4em; "><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; ">

<em class="parameter"><code style="font-family: &#39;liberation mono&#39;, &#39;bitstream vera mono&#39;, &#39;dejavu mono&#39;, monospace; white-space: pre-wrap; font-weight: bold; display: inline; word-wrap: break-word; ">passwordRetryCount</code></em></div>

</li><li class="listitem" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0px; margin-bottom: 0.4em; "><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; ">

<em class="parameter"><code style="font-family: &#39;liberation mono&#39;, &#39;bitstream vera mono&#39;, &#39;dejavu mono&#39;, monospace; white-space: pre-wrap; font-weight: bold; display: inline; word-wrap: break-word; ">retryCountResetTime</code></em></div>

</li><li class="listitem" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0px; margin-bottom: 0.4em; "><em class="parameter"><code style="font-family: &#39;liberation mono&#39;, &#39;bitstream vera mono&#39;, &#39;dejavu mono&#39;, monospace; white-space: pre-wrap; font-weight: bold; display: inline; word-wrap: break-word; ">accountUnlockTime</code></em><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; ">

</div></li></ul><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; "><font class="Apple-style-span" face="&#39;liberation mono&#39;, &#39;bitstream vera mono&#39;, &#39;dejavu mono&#39;, monospace"><span class="Apple-style-span" style="white-space: pre-wrap;"><b><i><br>

</i></b></span></font></div><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; "><span class="parameter"><code style="font-family: &#39;liberation mono&#39;, &#39;bitstream vera mono&#39;, &#39;dejavu mono&#39;, monospace; white-space: pre-wrap; display: inline; word-wrap: break-word; "><a href="http://www.redhat.com/docs/manuals/dir-server/8.1/admin/Managing_Replication-Replicating-Password-Attributes.html#replicating-pwd-policy">http://www.redhat.com/docs/manuals/dir-server/8.1/admin/Managing_Replication-Replicating-Password-Attributes.html#replicating-pwd-policy</a></code></span></div>

<div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; "><span class="parameter"><br></span></div><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; ">

<span class="parameter">I&#39;m using this with multi-master replication across 3 servers and works fine.  Just make sure to heed the advice about ensuring the policy is setup the same on all the servers:</span></div><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; ">

<span class="parameter"><br></span></div><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; "><span class="parameter"><a href="http://www.redhat.com/docs/manuals/dir-server/8.1/admin/User_Account_Management.html#User_Account_Management-Managing_the_Password_Policy">http://www.redhat.com/docs/manuals/dir-server/8.1/admin/User_Account_Management.html#User_Account_Management-Managing_the_Password_Policy</a></span></div>

<div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; "><br></div><div class="para" style="line-height: 1.29em; padding-top: 0px; margin-top: 0em; padding-bottom: 0em; margin-bottom: 0em; ">

Enjoy!</div></span><br><div class="gmail_quote">On Wed, Jul 7, 2010 at 9:03 AM, Gerrard Geldenhuis <span dir="ltr">&lt;<a href="mailto:Gerrard.Geldenhuis@betfair.com">Gerrard.Geldenhuis@betfair.com</a>&gt;</span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Hi<br>
The documentation clearly states that password modification history is not replicated including account lockout counters. To me that seems a bit pointless to have if your servers are authenticating against a cluster of 4 machines. There is no guarantee that next time when you change your password that the history will be captured by the same server.<br>


<br>
I am sure I am not the only person that has had to deal with this dilemma and am curious about other possible solutions to this problem. The problem being to keep a shared used password between multi masters. I would really appreciate any thoughts or shared expierences in dealing with the limitations of the password policy in a multimaster environment.<br>


<br>
Regards<br>
<br>
________________________________________________________________________<br>
In order to protect our email recipients, Betfair Group use SkyScan from<br>
MessageLabs to scan all Incoming and Outgoing mail for viruses.<br>
<br>
________________________________________________________________________<br>
<font color="#888888">--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
</font></blockquote></div><br></div>