Versions Compared

Version Old Version 3 New Version Current
Changes made by

Former user

Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from space IDS and version 8.2

SQL Password Method

The SQL password authentication method allows you to authenticate with username and password when the credentials are stored in a relational database which can be accessed using SQL. The authentication method allows the user also to change an expiring or expired password.

...

ConfigurationDescription
policy.password.encoding

The password encoding algorithm. Default value is SSHA. OPTIONAL.

Supported values: SSHA512, SHA512, SSHA384, SHA384, SSHA256, SHA256, SSHA, SHA, PKCS5S2, PBKDF2, MD4, PLAIN

Settings controlling password threat management:
policy.lockout.threshold The number of tries the user can try to enter the wrong password before the account is locked. The default value is 5 tries. OPTIONAL.
policy.lockout.duration The duration of account locking after too many bad tries in minutes. The default value is 20 minutes. Usually, a longer lockout duration is not recommended. OPTIONAL.
Settings controlling password renewal:
policy.password.expiring If user's password is older than this he/she is given a chance to change the password. Setting value is in minutes. OPTIONAL.
policy.password.max-age A maximum age for external directory password. User is forced to change password if his/her password is older than this. Setting value is in minutes. OPTIONAL.
policy.password.min-age The external directory password cannot be changed again before password minimum age has passed. Setting value is in minutes. OPTIONAL.
policy.password.history How many previous passwords the system remembers. The user can not change his/her password back to a previous one. OPTIONAL.
Settings controlling password strength:
policy.password.length A minimum length for the new password. Setting value is a non negative number of characters. OPTIONAL.
policy.password.complexity If set to true, the user password has to have at least three of the possible character types: letters, capital letters, numbers, and other characters. OPTIONAL.
policy.password.charset Allowed password characters and character set used with password encoding. Use either ASCII or UTF-8, default is UTF-8. OPTIONAL.

Finishing the Installation of Authentication Method and driver

To complete the authentication method installations you need to update the Ubisecure Server in Tomcat.

...