You can implement custom scripts for testing and generating password if the password requirements cannot be mapped with the existing settings options. Scripts are applied in addition to the other settings.
For more information see
You can implement custom scripts for testing and generating password if the password requirements cannot be mapped with the existing settings options. Scripts are applied in addition to the other settings.
For more information see
You can implement a check script if additional policies need to be used for checking a password, which cannot be mapped with the available settings. Syntax for Check Scripts Public Sub CCC_CustomP Script for checking a password.
You can implement a check script if additional policies need to be used for checking a password, which cannot be mapped with the available settings.
Public Sub CCC_CustomPwdValidate( policy As VI.DB.Passwords.PasswordPolicy, spwd As
System.Security.SecureString)
With parameters:
policy = password policy object
spwd = password to test
NOTE: To use a base object, take the property Entity of the PasswordPolicy class.
A password cannot start with ? or !. The script checks a given password for validity.
Public Sub CCC_PwdValidate( policy As VI.DB.Passwords.PasswordPolicy, spwd As
System.Security.SecureString)
Dim pwd = spwd.ToInsecureArray()
If pwd.Length>0
If pwd(0)="?" Or pwd(0)="!"
Throw New Exception(#LD("Password can't start with '?' or '!'")#)
End If
End If
If pwd.Length>2
If pwd(0) = pwd(1) AndAlso pwd(1) = pwd(2)
Throw New Exception(#LD("Invalid character sequence in password")#) End If
End If
End Sub
1. Create your script in the category Script Library in the Designer.
2. Edit the password policy.
a. Select Epic healthcare| Basic configuration data | Password policies in One Identity Manager.
b. Select the password policy in the result list.
c. Select Change master data.
d. Enter the name of the script to be used to check a password in the Check script input field on the Scripts tab.
e. Save the changes.
You can implement a generating script if additional policies need to be used for generating a random password, which cannot be mapped with the available settings.
Public Sub CCC_PwdGenerate( policy As VI.DB.Passwords.PasswordPolicy, spwd As
System.Security.SecureString)
With parameters:
policy = password policy object
spwd = generated password
NOTE: To use a base object, take the property Entity of the PasswordPolicy class.
In random passwords, the script replaces the ? and ! characters, which are not permitted.
Public Sub CCC_PwdGenerate( policy As VI.DB.Passwords.PasswordPolicy, spwd As
System.Security.SecureString)
Dim pwd = spwd.ToInsecureArray()
If pwd.Length>0
If pwd(0)="?" Or
pwd(0)="!"
Throw New
Exception(#LD("Password can't start with '?' or '!'")#)
End If
End If
If pwd.Length>2
If pwd(0) = pwd(1) AndAlso pwd(1)
= pwd(2)
Throw New
Exception(#LD("Invalid character sequence in password")#)
End If
End If
End Sub
You can add words to a list of restricted terms to prohibit them from being used in passwords.
NOTE: The restricted list applies globally to all password policies.
To add a term to the restricted list
1. Select Base Data | Security settings | Restricted passwords in Designer.
2. Create a new entry with Object | New and enter the term to excluded to the list.
3. Save the changes.
© ALL RIGHTS RESERVED. Conditions d’utilisation Confidentialité Cookie Preference Center