We have an IDM 2.x implementation (which will be upgraded to 3.51 in a
few months) that synchronizes among three eDirectory trees and an AD
domain. (For purposes of this question I am considering only the
eDirectory trees.)

Passwords are synchronizing just fine, but other password attributes
(force periodic changes, require unique passwords, limit grace logins)
are not. We would like to change this so that all these attributes are
synchronized among all three trees. Am I correct in assuming that the
procedure documented in TID #10098129 will address this? Are there any
glaring gotchas?


Thanks