Chat now with support
Chat with Support

Identity Manager 8.0 - Identity Management Base Module Administration Guide

Basics for Mapping Company Structures in One Identity Manager Managing Departments, Cost Centers and Locations Working with Dynamic Roles Employee Administration
One Identity Manager Users for Employee Administration Basic Configuration Data for Employees Entering Employee Master Data Employee's Central User Account Employee's Central Password Employee's Default Email Address Disabling and Deleting Employees Assigning Company Resources to Employees Origin of an Employee's Roles and Entitlements Analyzing Role Memberships and Employee Assignments Mapping Multiple Employee Identities Limited Access to One Identity Manager Additional Tasks for Managing Employees Determining an Employee‘s Language Determining an Employee‘s Working Hours Employee Reports
Managing Devices and Workdesks Managing Resources Set up Extended Properties Appendix: Configuration Parameters for Managing Departments, Cost Centers and Locations Appendix: Configuration Parameters for Managing Applications Appendix: Configuration Parameters for Managing Devices and Workdesks Appendix: Authentication Modules for Logging into the One Identity Manager

Character Sets for Passwords

Use the Character classes tab to specify which characters are permitted for a password.

Table 35: Character Classes for Passwords

Property

Meaning

Min. letters

Specifies the minimum number of alphabetical characters the password must contain.

Min. number lower case

Specifies the minimum number of lowercase letters the password must contain.

Min. number uppercase

Specifies the minimum number of uppercase letters the password must contain.

Min. number digits

Specifies the minimum number of digits the password must contain.

Min. number special characters

Specifies the minimum number of special characters the password must contain.

Permitted special characters

List of permitted characters.

Denied special characters

List of characters, which are not permitted.

Max. identical characters in total

Maximum number of identical characters that can be present in the password in total.

Max. identical characters in succession

Maximum number of identical character that can be repeated after each other.

Custom Scripts for Password Requirements

You can implement custom scripts for testing and generating password if the password requirements cannot be mapped with the existing settings options. Scripts are applied in addition to the other settings.

Detailed information about this topic

Script for Checking a Password

You can implement a check script if additional policies need to be used for checking a password, which cannot be mapped with the available settings.

Syntax for Check Scripts

Public Sub CCC_CustomPwdValidate( policy As VI.DB.Passwords.PasswordPolicy, spwd As System.Security.SecureString)

With parameters:

policy = password policy object

spwd = password to test

 TIP: To use a base object, take the property Entity of the PasswordPolicy class.
Example for a script for testing a password

A password cannot have '?' or '!' at the beginning. The script checks a given password for validity.

Public Sub CCC_PwdValidate( policy As VI.DB.Passwords.PasswordPolicy, spwd As System.Security.SecureString)

Dim pwd = spwd.ToInsecureArray()

If pwd.Length>0

If pwd(0)="?" Or pwd(0)="!"

Throw New Exception(#LD("Password can't start with '?' or '!'")#)

End If

End If

If pwd.Length>2

If pwd(0) = pwd(1) AndAlso pwd(1) = pwd(2)

Throw New Exception(#LD("Invalid character sequence in password")#)

End If

End If

End Sub

To use a custom script for checking a password

  1. Create your script in the category Script Library in the Designer.
  2. Edit the password policy.

    1. Select the category Employees | Basic configuration data | Password policies in the Manager.

    2. Select the password policy in the result list.
    3. Select Change master data in the task view.
    4. Enter the name of the script to test the password in Check script on the Scripts tab.
    5. Save the changes.
Related Topics

Script for Generating a Password

You can implement a generating script if additional policies need to be used for generating a random password, which cannot be mapped with the available settings.

Syntax for Generating Script

Public Sub CCC_PwdGenerate( policy As VI.DB.Passwords.PasswordPolicy, spwd As System.Security.SecureString)

With parameters:

policy = password policy object

spwd = generated password

 TIP: To use a base object, take the property Entity of the PasswordPolicy class.
Example for a script to generate a password

The script replaces the invalid characters '?' and '!' in random passwords.

Public Sub CCC_PwdGenerate( policy As VI.DB.Passwords.PasswordPolicy, spwd As System.Security.SecureString)

Dim pwd = spwd.ToInsecureArray()

' replace invalid characters at first position

If pwd.Length>0

If pwd(0)="?" Or pwd(0)="!"

spwd.SetAt(0, CChar("_"))

End If

End If

End Sub

To use a custom script for generating a password

  1. Create your script in the category Script Library in the Designer.
  2. Edit the password policy.

    1. Select the category Employees | Basic configuration data | Password policies in the Manager.

    2. Select the password policy in the result list.
    3. Select Change master data in the task view.
    4. Enter the name of the script to generate a password in Generation script on the Scripts tab.
    5. Save the changes.
Related Topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating