The Resource Kit accomplishes password expiration notification by using a job and an e-mail template.
The purpose of an Identity Manager job is to complete a task that occurs many times. For more information about jobs, see the Identity Manager 3.6 Jobs Guide. In this case, the default job runs daily at 12:01 a.m. The job searches all user objects and checks the attribute that stores the password expiration date. When the password is about to expire, the job uses the e-mail template to create a message that informations the user that the password is going to expire.
A job consists of a JAR file (pwdexpjob.jar) and an XML file (PwdExpNotifyJobDef.xml).
The JAR file is placed in the /opt/novell/eDirectory/lib/dirxml/classes directory during the installation of Identity Manager. Every time eDirectory™ starts, the JAR file is loaded. The JAR file is executed when all of the criteria set in the job parameters are met. For the Resource Kit, that means every night at 12:01 a.m. the job performs a search of the Identity Vault to find all users whose passwords are scheduled to expire in 30 days, 15 days, 5 days, and 1 day. The job sends an e-mail to each user who meets the criteria, informing them that the password is about to expire.
For configuration information, see Configuring the Password Expiration Notification Job
in the Identity Manager 3.6 Jobs Guide.
The job calls the Password Expiration Notification e-mail template to create the e-mail that the users receive to notify them that their passwords are going to expire. You can modify the text in the e-mail to customize the e-mail message for each deployment of the Resource Kit.
You select the Password Expiration Notification e-mail template during the configuration of the Password Expiration Notification job.