Hi everyone,

The documentation for eDir 9 says:

The password cannot contain the full value of the CN attribute or full or any part of the value of the Full Name attribute for the account, if the attribute contains at least three characters and is a single word. A part of the attribute value is defined as three or more consecutive characters delimited on both ends by the following characters: commas; periods; dashes; hyphens; underscores; spaces; pound signs; or tabs.
But when we set the Microsoft Server 2008 Password Policy, the rule I quoted before is not working.

For example, we have a user which CN is johnp, and his fullName is PAUL John, if I set to him the password "Paul2019" the rule works and the password is not setted because of "Paul", but if I set "Pau2009" (supposing the minimum length is 7 characters), the rule doesn't work and the password is setted.

The same happens with user's CN.

Does anyone have idea why is not working properly the password pol


IDM 4.7.2
eDir 9.1 SP2