Password Policy
A general password policy can be set for all Native Users connecting to the Gateway. The policy can be set by performing the following steps:
- Open the Management console and expand HOST CONFIGURATION
- Select Password Policy from the sub-menu
- Various settings which can be configured for the password policy, are described below.
Password Policy Settings
| # | Field | Description |
|---|---|---|
| 1 | Minimum length of password (min 6 , max 20) : | Specify the minimum length of password which needs to be enforced. The minimum length should be between 6 and 20 |
| 2 | Minimum number of special characters in password : | Specify the minimum number of special characters which need to be enforced in the password |
| 3 | Minimum number of digits in password : | Specify the minimum number of digits to be enforced in the password |
| 4 | Minimum number of uppercase characters in password : | Specify the minimum number of Uppercase characters to be enforced in the password |
| 5 | Minimum number of lowercase characters in password : | Specify the minimum number of lowercase characters to be enforced in the password |
| 6 | Keywords that password should not include (Comma separated, case insensitive list of keywords , maximum 2048 characters allowed): | Specify the comma separated list of characters which should not be considered as part of the password. |
| 7 | Check against dictionary : | Check this option to check the strength of password against dictionary. Common English words will not get allowed as passwords, if this option is checked. |
| 8 | Do not allow user id(or parts of user id) in password : | Mark the checkbox to reject the password which contains more than 2 characters from User ID. For e.g. if User ID is Matthew then password Mat@123 or Matthew will be rejected. |
| 9 | Do not allow username (or parts of username) in password : | Mark the checkbox to reject the password which contains more than 2 characters from Username. For e.g. if User Name is Matthew then password Mat@123 or Matthew will be rejected. |
| 10 | Number of previous passwords current password should not be same as ( min 0, max 10): | Enter the no. of previous passwords to check while setting new password for any user. New Password matching the previous set will be rejected. |
| 11 | Password expiry time(days) (0 means never, max 365) : | Enter the time after which user password will expire. |
| 12 | Maximum number of failed authentication attempts : | No. of failed authentication attempts allowed to user. After these attempts user account will be locked. |
Click Submit. for the policy settings to take effect