Check password settings are the rules Safeguard for Privileged Passwords uses to verify account passwords.
Navigate to Administrative Tools | Settings | Profile | Check Password.
The Check Password pane displays the following about the listed check password setting rules.
Property | Description |
---|---|
Name |
The name of the check password rule. |
Partition | The partition that uses the rule. |
Description |
Information about the rule. |
Schedule | Displays the selected rule's schedule. |
Use these toolbar buttons to manage the check password setting rules.
Option | Description |
---|---|
Add a check password rule. For more information, see Adding check password settings. | |
Update the list of check password rules. | |
Modify the selected rule. | |
"Clone" the selected rule. |
It is the responsibility of the Asset Administrator or the partition's delegated administrator to define the rules Safeguard for Privileged Passwords uses to verify account passwords.
To add a password validation schedule
Interval: Choose Never, Minute, Hour, Day, Week, or Month.
|
NOTE: Best Practice: Do not use the Minute interval. |
Repeat Interval: Select the interval you would like to repeat the password check task.
Optionally select either of these options:
Notify Delegated Owners on Mismatch: Select this option to trigger a notification when Safeguard for Privileged Passwords detects a password mismatch.
|
NOTE: To send event notifications to a user, you must configure Safeguard for Privileged Passwords to send alerts. For more information, see Configuring alerts. Set up an email template for the Password Check Mismatch event type. |
Directory account password rules govern the construction of a new password created by Safeguard for Privileged Passwords during an automatic directory account password change. Some companies impose requirements on passwords, such as:
|
Note: You select a directory account password rule set when defining a directory's profile. For more information, see Creating a directory profile. A directory account password rule applies to all accounts governed by the profile. |
Navigate to Administrative Tools | Settings | Profile | Directory Account Password Rules.
Use these toolbar buttons to manage your directory account password rules.
Option | Description |
---|---|
Add a directory account password complexity rule. For more information, see Adding a directory account password rule. | |
Update the list of directory account password rules. | |
Modify the selected rule. | |
"Clone" the selected rule. |
It is the responsibility of the Asset Administrator, or a partition's delegated administrator, to configure directory account password complexity rules.
To add a directory account password rule:
Navigate to Administrative Tools | Settings | Profile | Directory Account Password Rules.
Set the Password Length from 33 to 255 characters.
Default: 6 to 10 characters
|
Note: The maximum length must be equal to or greater than the sum of minimum characters described in the next step. |
First Character Type |
Choose one of the following:
Default: All | ||
Last Character Type |
Choose one of the following:
Default: All | ||
Allow Consecutively Repeated Characters |
Select this option to allow Safeguard for Privileged Passwords to create a password with consecutively repeated characters.
Default: Not allowed | ||
Allow Uppercase |
Select this option to allow Safeguard for Privileged Passwords to create a password with uppercase characters. Set the minimum number of required uppercase characters, or set it to zero if there is no minimum requirement.
Default: Require a minimum of 1 | ||
Allow Lowercase |
Select this option to allow Safeguard for Privileged Passwords to create a password with lowercase characters. Set the minimum number of required lowercase characters, or set it to zero if there is no minimum requirement.
Default: Require a minimum of 1 | ||
Allow Numeric (0-9) |
Select this option to allow Safeguard for Privileged Passwords to create a password with numeric characters. Set the minimum number of required numeric characters, or set it to zero if there is no minimum requirement.
Default: Require a minimum of 1 | ||
Allow Symbols (e.g @ # $ % &) |
Select this option to allow Safeguard for Privileged Passwords to create a password with special characters. Set the minimum number of required symbolic characters, or set it to zero if there is no minimum requirement.
Default: Not allowed | ||
Valid Symbols |
Enter allowable special characters, such as: ~!@#$%^*()_+-=;'?/\|><.,`[]{}.
|
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy