Manualshelf

OSF DCE Administration Guide--Core Components

ManualsBrandsHP ManualsServerHP NonStop G-Series
451452453454455456457458459460
OSF DCE Administration Guide—Core Components
TABLE 35-1. Stricter Standard Policies
______________________________________________________________
For This Type of Policy... This Is the Stricter Policy...
______________________________________________________________
______________________________________________________________
Password expiration date The shorter expiration period
______________________________________________________________
Password lifespan The shorter lifespan
______________________________________________________________
Account lifespan The shorter lifespan
______________________________________________________________
Password length The greater length
______________________________________________________________
Password consisting of all spaces The password cannot consist of all
spaces; it must include some
characters
______________________________________________________________
Password consisting of all
alphanumerics
The password cannot consist of all
alphanumerics; it must include
some nonalphanumeric characters
______________________________________________________________
The shorter time (note: this feature
is not currently used by DCE, and
any use of this option is
unsupported at the present time)
Maximum ticket renewable
______________________________________________________________
Maximum ticket lifetime The shorter time
______________________________________________________________
When the registry is created, standard policies are by default at their most permissive
state; that is, the password expiration date is none, password and account lifespans are
unlimited, the minimum password length is 0, and passwords can consist of all spaces
and all alphanumerics. The maximum ticket lifetime is set to 10 hours. (Maximum
ticket renewable is not currently used.) To implement stricter policies, you must use the
registry modify command.
35.1.4 The Effects of Changes on Existing Policies
Except for the password format policies described in Section 35.1.1.4, policy changes
affect all existing accounts and all accounts that you create after the change.
Changes to password format policies, such as password length, whether passwords can
consist of all spaces, and whether passwords can consist of all alphanumeric characters,
affect only passwords for those accounts that are created after the policy is changed.
The changes have no effect on existing passwords. For example, if you change the
minimum password length policy to enforce a longer length password, existing
passwords that are shorter than the length specified by the new policy are unaffected.
They do not need to be changed, but any new passwords that are created must adhere to
the new policy. However, the next time you change an existing password, the longer
length policy is enforced.
35 6 Tandem Computers Incorporated 124243