Skip to main content

Step 6.2. Create Password policy

 

ssssssssssssss

Step-by-step

1. First of all, you must access the Password policies page, the path to access is the following:

Main Menu > Administration > Configure Soffid > Security settings > Password policies

2. Once you are located on the Password policies page, you must click the "Add password policy", at the proper domain, to add a new Password policy type. Then Soffid will display a new empty page to fill in the data.

You must fill, at least the required fields (fields with an asterisk) to create a password policy.

  • You must select the User type created at the previous step.
  • The Description should be a brief description about the password policy.
  • The Password type allows you to select one of the available options:
    • Entered by the user: that is the default behavior.
    • Automatically generated: these policies are useful for shared accounts when using Enterprise Single Sign-on.

Other fields you could configure

{{@64#bkmrk-password-domain%3A-use}use-2}}

 

  • Change allowed: if it is checked, the user could change automatically generated passwords.
  • Query allowed: if is checked, the user could view the current password.
  • Valid period (days): the change of the password will be asked in that number of days.
  • Grace period (days): additional days allowed to the valid period, for changing the password.
  • Length (min & max): added number of days to change the password.
  • Regular expression: the password must comply with a that regular expression.
  • Uppercase letters (min & max): min and max number of uppercase letters that be included on the password.
  • Lowercase letters (min & max): min and max number of lowercase letters that be included on the password.
  • Numbers (min & max): min and max number of numbers that be included on the password.
  • Symbols (min & max): min and max number of symbols that be included on the password.
  • Complexity: Similar operation to the same option in Active Directory. It is mandatory to use three diffentes type of characters (uppercase, lowercase, numbers and symbols), it is not allowed to use the user code, name or surname.
  • Passwords remembered: number of passwords the system will remember. New password cannot be equal to any other password used in the past.
  • Forbidden words: list of forbidden words that may not be used to create a password if they are selected.

 

3. Once you have filled in all those fields, you must apply changes, by clicking on the "Apply changes" button to create the new user type.

4. When you apply changes:

4.1. If all the required information is correct, Soffid will save the new user type, close the page and  show the user types list with all the user types created on the system, included the last one created.

4.2. If the information filled in is not correct, Soffid will show an alert on the fields which have errors. You must correct the errors and save the user type again.

Screen overview