The UnboundID Directory Server provides a way to capture passwords and store those passwords in a local entry. This is useful when migrating to UnboundID Directory Server from a legacy server that does not allow the extraction of passwords, for example, NetIQ eDirectory.
Configure the Pass-Through Authentication Plugin to verify a password that is presented by a user via a Simple Bind Request against the system where the password is actually stored. Once the password is verified against the external server (by a BIND request), then the password can be stored locally, and the external server is never contacted again for that user and that user account can be deleted from the external server.
See also: Pass-through authentication.