From bed40d778e89d61ab1e17cf4a0cb769045e6d7dc Mon Sep 17 00:00:00 2001
From: Andy Baran <andy.baran@hashicorp.com>
Date: Fri, 5 Dec 2025 10:30:31 -0500
Subject: [PATCH 1/3] remove "%" and "s"

---
 .../content/partials/ldap/example-config/racf/ibm-setup.mdx   | 2 +-
 .../password-policies/example-config/ibm-racf-passphrase.mdx  | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/content/vault/v1.21.x/content/partials/ldap/example-config/racf/ibm-setup.mdx b/content/vault/v1.21.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
index 711cfff941..4a05046d97 100644
--- a/content/vault/v1.21.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
+++ b/content/vault/v1.21.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
@@ -18,7 +18,7 @@ For example:
   "schema":          "racf",
   "binddn":          "racfid=vault,profiletype=user,cn=RACF",
   "bindpass":        "iamabadpassword",
-  "url":             "ldaps://9.12.41.127:389",
+  "url":             "ldap://9.12.41.127:389",
   "credential_type": "phrase",
   "password_policy": "racf-passphrase"
 }
diff --git a/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx b/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
index 796c2c5c16..cef7e7b953 100644
--- a/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
+++ b/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
@@ -5,7 +5,7 @@ requiring:
 - at least one lowercase character.
 - at least one uppercase character.
 - at least one number.
-- at least special character from the set [`!`, `@`, `#`, `$`, `%`, `&`].
+- at least special character from the set [`!`, `@`, `#`, `$`, `&`].
 
 ```hcl
 length = 14
@@ -26,7 +26,7 @@ rule "charset" {
 }
 
 rule "charset" {
-  charset = "!@#$%&"
+  charset = "!@#$&"
   min-chars = 1
 }
 ```
\ No newline at end of file

From 122f365fa6221da9524f0aad2aa633a331302924 Mon Sep 17 00:00:00 2001
From: Andy Baran <andy.baran@hashicorp.com>
Date: Fri, 5 Dec 2025 10:40:47 -0500
Subject: [PATCH 2/3] expand charset and drop %

---
 .../password-policies/example-config/ibm-racf-passphrase.mdx  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx b/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
index cef7e7b953..3c4483ffba 100644
--- a/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
+++ b/content/vault/v1.21.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
@@ -5,7 +5,7 @@ requiring:
 - at least one lowercase character.
 - at least one uppercase character.
 - at least one number.
-- at least special character from the set [`!`, `@`, `#`, `$`, `&`].
+- at least special character from the set [`@`, `$`, `#`, `!`, `?`, `.`, `:`, `;`, `&`, `<`, `>`, `(`, `)`, `[`, `]`, `{`, `}`, `~`, `*`, `_`, `|`, `=`].
 
 ```hcl
 length = 14
@@ -26,7 +26,7 @@ rule "charset" {
 }
 
 rule "charset" {
-  charset = "!@#$&"
+  charset = "@$#!?.:;&<>()[]{}~*_|="
   min-chars = 1
 }
 ```
\ No newline at end of file

From 5b75e5798fd99ed90048ec6823f7a9006d0cb907 Mon Sep 17 00:00:00 2001
From: Andy Baran <andy.baran@hashicorp.com>
Date: Tue, 9 Dec 2025 17:10:54 -0500
Subject: [PATCH 3/3] updates for 1.19 and 1.20

---
 .../content/partials/ldap/example-config/racf/ibm-setup.mdx  | 2 +-
 .../password-policies/example-config/ibm-racf-passphrase.mdx | 4 ++--
 .../content/partials/ldap/example-config/racf/ibm-setup.mdx  | 2 +-
 .../password-policies/example-config/ibm-racf-passphrase.mdx | 5 ++---
 4 files changed, 6 insertions(+), 7 deletions(-)

diff --git a/content/vault/v1.19.x/content/partials/ldap/example-config/racf/ibm-setup.mdx b/content/vault/v1.19.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
index 711cfff941..4a05046d97 100644
--- a/content/vault/v1.19.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
+++ b/content/vault/v1.19.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
@@ -18,7 +18,7 @@ For example:
   "schema":          "racf",
   "binddn":          "racfid=vault,profiletype=user,cn=RACF",
   "bindpass":        "iamabadpassword",
-  "url":             "ldaps://9.12.41.127:389",
+  "url":             "ldap://9.12.41.127:389",
   "credential_type": "phrase",
   "password_policy": "racf-passphrase"
 }
diff --git a/content/vault/v1.19.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx b/content/vault/v1.19.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
index 796c2c5c16..3c4483ffba 100644
--- a/content/vault/v1.19.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
+++ b/content/vault/v1.19.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
@@ -5,7 +5,7 @@ requiring:
 - at least one lowercase character.
 - at least one uppercase character.
 - at least one number.
-- at least special character from the set [`!`, `@`, `#`, `$`, `%`, `&`].
+- at least special character from the set [`@`, `$`, `#`, `!`, `?`, `.`, `:`, `;`, `&`, `<`, `>`, `(`, `)`, `[`, `]`, `{`, `}`, `~`, `*`, `_`, `|`, `=`].
 
 ```hcl
 length = 14
@@ -26,7 +26,7 @@ rule "charset" {
 }
 
 rule "charset" {
-  charset = "!@#$%&"
+  charset = "@$#!?.:;&<>()[]{}~*_|="
   min-chars = 1
 }
 ```
\ No newline at end of file
diff --git a/content/vault/v1.20.x/content/partials/ldap/example-config/racf/ibm-setup.mdx b/content/vault/v1.20.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
index 711cfff941..4a05046d97 100644
--- a/content/vault/v1.20.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
+++ b/content/vault/v1.20.x/content/partials/ldap/example-config/racf/ibm-setup.mdx
@@ -18,7 +18,7 @@ For example:
   "schema":          "racf",
   "binddn":          "racfid=vault,profiletype=user,cn=RACF",
   "bindpass":        "iamabadpassword",
-  "url":             "ldaps://9.12.41.127:389",
+  "url":             "ldap://9.12.41.127:389",
   "credential_type": "phrase",
   "password_policy": "racf-passphrase"
 }
diff --git a/content/vault/v1.20.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx b/content/vault/v1.20.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
index 796c2c5c16..6dcedfd3d9 100644
--- a/content/vault/v1.20.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
+++ b/content/vault/v1.20.x/content/partials/password-policies/example-config/ibm-racf-passphrase.mdx
@@ -5,8 +5,7 @@ requiring:
 - at least one lowercase character.
 - at least one uppercase character.
 - at least one number.
-- at least special character from the set [`!`, `@`, `#`, `$`, `%`, `&`].
-
+- at least special character from the set [`@`, `$`, `#`, `!`, `?`, `.`, `:`, `;`, `&`, `<`, `>`, `(`, `)`, `[`, `]`, `{`, `}`, `~`, `*`, `_`, `|`, `=`].
 ```hcl
 length = 14
 
@@ -26,7 +25,7 @@ rule "charset" {
 }
 
 rule "charset" {
-  charset = "!@#$%&"
+  charset = "@$#!?.:;&<>()[]{}~*_|="
   min-chars = 1
 }
 ```
\ No newline at end of file