Allows an object to be granted password management rights for all objects in a container or subtree without having full supervisor rights.
For help in understanding the attribute definition template, see Reading NDS Attribute Type Definitions.
This attribute is new in NetWare 5.x and has been defined specifically for password management, and as such, can never be added to any class definition. It is a special attribute to be used in ACLs. When referenced in an ACL, it grants rights to modify the password of the object the ACL belongs to, or if inheritance is set on the ACL, to all subordinate objects.
To grant permission to change the password, NDS now looks for either write rights on the ACL attribute (original behavior) or write rights to the Password Management attribute (new behavior).
For LDAP clients to access this attribute, the LDAP server must be configured to map the attribute to a name without spaces or colons.