To help prevent unauthorized access, you can ensure that users change their passwords and PIN codes regularly.
You can ensure that users do not re-use passwords. HPE IDOL Server can store a list of used passwords, and prevent users from re-using a stored password.
HPE IDOL Server can also ensure that users keep passwords for a minimum duration. This option prevents users from immediately changing their password several times to return to a previous password.
You can use the UserReadUserListDetails
action to check the time remaining (in seconds) until password expiration for a user. If the password has expired, -1
is displayed.
Open the HPE IDOL Server configuration file in a text editor.
Find the [User]
section, or create one if it does not exist.
Set the PasswordChangeDuration
parameter to the time interval after which users must change their password. For example:
PasswordChangeDuration=60days
Set the PincodeChangeDuration
parameter to the time interval after which users must change their PIN code. For example:
PincodeChangeDuration=60days
Set the MaxNumPasswordPerUser
parameter to the number of passwords that you want to store in HPE IDOL Server. Users cannot change their passwords to any of the stored passwords. For example:
MaxNumPasswordPerUser=5
Set the KeepPasswordDuration
parameter to the length of time that users must keep a password before they are allowed to change it again. For example:
KeepPasswordDuration=5days
Save and close the configuration file. Restart HPE IDOL Server for your changes to take effect.
Notify your users of your password and PIN policies.
|