Manualshelf

Safeguard Administrator's Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
121122123124125126127128129130
Configuration
Safeguard Administrator’s Manual—523317-029
9-14
Configuring Password Control
PASSWORD-MIN-ALPHA-REQ) must not be greater than the value of the
PASSWORD-MAXIMUM-LEN attribute.
PASSWORD-ERROR-DETAIL
Determines whether a detailed error message is displayed to the user when the
password supplied does not meet the minimum complexity as defined.
Detailed error message is displayed when PASSWORD-ERROR-DETAIL is ON as
per the password minimum required complexity. A default error message is
displayed when PASSWORD-ERROR-DETAIL is OFF.
However, the default value is OFF. This attribute defines part of the SAFEGUARD
global configuration.
PASSWORD-EXPIRY-GRACE
Specifies the number of days after password expiration during which users are
allowed to change their expired passwords during logon. A value of 0 means no
grace period. The default is 0.
PASSWORD-EXPIRY-GRACE can also be specified in individual user
authentication records. If the value of this attribute is not specified in a user
authentication record, the Safeguard software uses the value specified in the
configuration record.
PASSWORD-ENCRYPT
Specifies if, when a password for any user ID is changed, an encrypted version of
the clear-text password in case of Data Encryption Standard (DES) or the message
digest (hashed password) in case of HMAC256, is stored in the user database.
When set to OFF, the password is stored as clear text in the user database. The
initial value is ON.
Note. This attribute is supported only on systems running on J06.14 and later J-series RVUs
and H06.25 and later H-series RVUs.
Note. The default value is ON only on systems running H06.06 and later H-series RVUs and
G06.29 and later G-series RVUs.
Note. If the password is encrypted by the PASSWORD program, the Safeguard software
receives an encrypted version of the password and cannot check for
PASSWORD- MINIMUM-LENGTH. However, if the Safeguard software performs the
encryption through the PASSWORD-ENCRYPT attribute, it checks PASSWORD-MINIMUM-
LENGTH before it encrypts the password.