Jakub,
Thanks for the response, I figured out why I was getting the constraint violation, in my case it was because I have the “passwordminage” set for my policy, when I changed the user attribute “passwordallowchangetime” to the current date
then I was able to perform the passwd operation. So at this point I believe the password policy is being applied, however I am just not getting all of the responses I would like, I get things like “password is too short”, “your password will expire in X days”,
but I would expect to get something like “You cannot change your password again for X days” from the above
This leads me to another question, is there a way I can map certain responses to responses that I define?
Thanks,
Daniel B