As far as I know you can only set it by person.&nbsp; By adding the pwdPolicySubentry object to the person and have it&#39;s value equal the dn of the policy you want to enforce upon it.&nbsp; If it is possible by group, I&#39;d like to know.<br>
<br>Adam<br><br><div class="gmail_quote">On Thu, Jun 12, 2008 at 9:49 AM, Andy Loughran &lt;<a href="mailto:andy@zrmt.com">andy@zrmt.com</a>&gt; wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
When ppolicy is set as default, it applies globally to the entire LDAP tree:<br>
<br>
dn: cn=default,ou=policies,dc=zednax,dc=com<br>
<br>
Is it possible to set the ppolicy by group?<br>
<br>
Regards,<br><font color="#888888">
<br>
Andy<br>
</font></blockquote></div><br><br clear="all"><br>-- <br>Adam Leach<br>BS Computer/Electrical Engineering<br>West Virginia University<br>System Administrator - Raytheon<br>(304)677-4455