opendj: is it possible to use subentry based password policy for pass-through?

I know opendj can create a policy of pass-through in cn=config, but cn=config will not be replicated.

I'm wondering if it's possible to create such a pass-through policy for sub-entry based ? Thus, replica can work.

And my another requirement is that the pass-through policy can be changed during runtime.

If yes, is there any document or example that I can learn?

Thanks

Solution

Policies can be change at runtime and the change will be applied immediately without a server restart (like most of OpenDJ configuration). But there is no support for Passthrough AuthN policies as subentries in OpenDJ for now. How many pass-through policies do you think you will need to configure ?

ldapsearch - truncating the result
Getting error while creating the tenant in wso2 Identity server 6.0.0
OpenDJ: Editing 'gecos' schema syntax causes 'posixAccount' to be removed and creates a duplicate OID
Are there any possibilities of upgrading OpenDJ LDAP with minimalistic downtime?
Can openldap sync Directory Information Tree data using syncrepl from opendj as provider?
Connect host ldap server to local VM
OpenDJ dbcache implementation - where is it located in RAM?
Does limiting an LDAP search by baseDN provide any benefit when the attribute being searched on has an index?
supervisor manages a process which is started up with a shell script
The path for certificate, private key and pfx files for OpenDJ version 3.0 install to be completed
How to verify OpenDJ respond to ldap request?
How to connect to OpenDJ LDAP server (Docker)
How to disable the property of password-generator in OpenDJ
OpenDJ vlv index error: # Server-side sort failed: Unwilling to Perform
Can we load Schema (base schema) for OpenDJ using Novel Ldap api?
OpenDJ create new schema elements object classes and attributes types on cmd line
Migration OpenDJ to Directory Services 6.5
OpenDJ vs Directory Services
(opendj-ldap-sdk-2.6.0) bind method parameter - password char [ ]
ForgeRock Directory Server(OpenDj) ldapsearch in windows cmd ( not Linux)
OpenDJ searchrate output explanation
Seamless switching of an application from one AMI to another AMI
How to verify LDAP username and password via an authenticated connection?
Is OpenDJ, OpenAM and OpenIAM free software
OpenDJ identity mapper for Simple LDAP Bind?
Customized Password Storage Scheme Type？
Cannot find forgerock openDJ 3.5.1 maven jars
SQL Server openDJ integration
opendj: is it possible to use subentry based password policy for pass-through?
opendj user a different attribute rather than default ds-pwp-account-disabled to track user's status?