Chat now with support
Chat with Support

Identity Manager 8.0 - Administration Guide for Connecting Unix-Based Target Systems

Managing Unix-Based Systems Setting Up Synchronization with a Unix-Based Target System Base Data for Unix-Based Target Systems Unix Host Unix user accounts Unix groups Reports about Unix Objects Appendix: Configuration Parameters for Managing Unix Appendix: Default Project Template for Unix-Based Target Systems

General Master Data for a Password Policy

Enter the following master data for a password policy.

Table 13: Master Data for a Password Policy

Property

Meaning

Display name

Password policy name. Translate the given text using the button.

Description

Spare text box for additional explanation. Translate the given text using the button.

Error Message

Custom error message outputted if the policy is not fulfilled. Translate the given text using the button.

Owner (Application Role)

Application roles whose members can configure the password policies.

Default policy

Mark as default policy for passwords.

NOTE: The password policy "One Identity Manager password policy" is marked as the default policy. This password policy is applied if no other password policies can be found.

Policy Settings

Define the following settings for a password policy on the Password tab.

Table 14: Policy Settings

Property

Meaning

Initial password

Initial password for new user accounts. If no password is given when the user account is added or a random password is generated, the initial password is used.

Password confirmation

Reconfirm password.

Min. Length

Minimum length of the password. Specify the number of characters a password must have.

Max. length

Maximum length of the password. Specify the number of characters a password can have.

Max. errors

Maximum number of errors. Set the number of invalid passwords. If the user has reached this number the user account is blocked.

Validity period

Maximum age of the password. Enter the length of time a password can be used before it expires.

Password history

Enter the number of passwords to be saved. If the value '5' is entered, for example, the last 5 passwords of the user are saved.

Min. password strength

Specifies how secure the password must be. The higher the password strength, the more secure it is. The password strength is not tested if the value is '0'. The values '1', '2', '3' and '4' gauge the required complexity of the password. The value '1' demands the least complex password. The value '4' demands the highest complexity.

Name properties denied

Specifies whether name properties are permitted in the password.

Character Sets for Passwords

Use the Character classes tab to specify which characters are permitted for a password.

Table 15: Character Classes for Passwords

Property

Meaning

Min. letters

Specifies the minimum number of alphabetical characters the password must contain.

Min. number lower case

Specifies the minimum number of lowercase letters the password must contain.

Min. number uppercase

Specifies the minimum number of uppercase letters the password must contain.

Min. number digits

Specifies the minimum number of digits the password must contain.

Min. number special characters

Specifies the minimum number of special characters the password must contain.

Permitted special characters

List of permitted characters.

Denied special characters

List of characters, which are not permitted.

Max. identical characters in total

Maximum number of identical characters that can be present in the password in total.

Max. identical characters in succession

Maximum number of identical character that can be repeated after each other.

Custom Scripts for Password Requirements

You can implement custom scripts for testing and generating password if the password requirements cannot be mapped with the existing settings options. Scripts are applied in addition to the other settings.

Detailed information about this topic
Related Documents