Is it possible to ignore the minimum password age set on a universal
password policy when syncing a password via a driver?

We have an IdM Vault which is syncing a number of domains and also has
a user app attached. We have a password policy requirement in the
organisation that users must keep their password for a minimum of 2 days
before they can change it.

Because we are using the user app to provide forgotten password self
service we also need the Vault universal policy to enforce this policy
as well as the domains.

The problem we have is that now if the helpdesk change a person's
password and force the user to change password at next logon, the vault
refuses to sync the second password change thats made by the user.

Any ideas for preserving the policy in the user app, but overriding it
when syncing via drivers?

stevewatts's Profile:
View this thread: