Password policies

Definition

Password domain

Is a logical way of grouping managed systems that are sharing the same password for each account. If the administrator chooses to have the same password for every system, only one password domain should exist. If the administrator chooses to assign a different password for each system, then a password domain should be created for each managed system.

Password policies

Password policies allow you to define custom rules that passwords must comply with to enhance system security. For each password domain, Soffid allows you to create different password policies related to user type. It is only possible to define a single password policy for one password domain and one user type. 

There are two kinds of password policies.

A password policy will also define how often the password needs to be changed and how many days are allowed to change it.

Regarding password complexity, you can specify the minimum and the maximum number of lowercase letters, uppercase letters, numbers, and symbols, as well as password length.

The administrator users can define a regular expression that must match each password. This can be used, for instance, to ensure that the first password is not numeric.

It is allowed to create a list of forbidden words that cannot be used as passwords.

image-1641381462597.png

  1. Password domain
  2. User Type

Standard attributes

Password Domain

Password policies

Actions

Password policies query actions

Add new domain

Allows you to create a new password domain. You can choose that option on the hamburger menu or click the add button (+).To add a new password domain it will be mandatory to fill in the required fields

Add new password policy

Allows you to create a new password policy on a specific password domain. Below the father password domain you can find the button to perform that action.To add a new password policy it will be mandatory to fill in the required fields.

Password domain detail actions

Apply changes

Allows you to save a new password domain or to update the password domain changes. To save the data it will be mandatory to fill in the required fields.

Delete

Allows you to delete a password domain. To delete a password domain you can click on the hamburger icon and then click the delete button (trash icon).

Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

Undo

Allows you to quit without applying any changes.

Password policies detail actions

Apply changes

Allows you to create a new password policy or to update password policies changes. To save the data it will be mandatory to fill in the required fields.

Delete

Allows you to delete a password policy. To delete a password policy you can click on the hamburger icon and then click the delete button (trash icon).

Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

Undo

Allows you to quit without applying any changes.

Add word

Allows you to create a new forbidden words. That forbidden words that may not be used to create a password if they are selected.



Revision #23
Created 6 April 2021 14:27:24 by pgarcia@soffid.com
Updated 30 November 2022 10:18:18 by pgarcia@soffid.com