User Password Rules

Scoping Questions

1. What is the minimum password length? (reference set default: 6)
2. What is the maximum password length? (reference set default: 20)
3. Should strong passwords be enforced? (requires special characters)
4. Should alphanumeric passwords be forced? (requires mix of letters and numbers)
5. Should mixed case passwords be forced? (requires uppercase and lowercase)
6. Should password reuse be prevented?
7. What is the password expiry time in days? (0 = never expires)
8. Should users be forced to change password on first sign-on?

How To Guide

How To Configure Users, User Roles and User Templates

Configuration Examples

User Template - Password Rules

Password rules can be set per-user or enforced via a user template. The user template approach is recommended as it ensures consistency and marks password fields as FIXED.

<retail:userTemplate
  xmlns:core="http://www.enactor.com/core"
  xmlns:retail="http://www.enactor.com/retail">
  <retail:user>
    <retail:strongPassword>true</retail:strongPassword>
    <retail:forceAlphaNumericPassword>true</retail:forceAlphaNumericPassword>
    <retail:forceMixedCasePassword>true</retail:forceMixedCasePassword>
    <retail:preventPasswordReUse>true</retail:preventPasswordReUse>
    <retail:minimumPasswordLength>6</retail:minimumPasswordLength>
    <retail:maximumPasswordLength>20</retail:maximumPasswordLength>
    <retail:passwordExpiryTime>0</retail:passwordExpiryTime>
    <retail:forceChangePassword>false</retail:forceChangePassword>
    <!-- Field options control which fields are locked in the template -->
    <retail:fieldOptions>
      <entry><key>minimumPasswordLength</key><value>FIXED</value></entry>
      <entry><key>maximumPasswordLength</key><value>FIXED</value></entry>
      <entry><key>forceMixedCasePassword</key><value>FIXED</value></entry>
      <entry><key>preventPasswordReUse</key><value>FIXED</value></entry>
    </retail:fieldOptions>
  </retail:user>
</retail:userTemplate>