Secret Server
Password Reset Server
- Overview
- Demo Movie
- Features
- Download
- Purchase
- Forums
- Support
- Community
Group Management Server
- Overview
- Features
- Download
- Purchase
- Support
- Forums
Company
- About Us
- In the Press
- Industry Analysts
- Our Team
- Blog
- Careers
- Events
- Privacy Statement
- Contact

Community Home	Forum Home	Recent Topics	Recent Posts	Search

Thycotic Community Forum

Messages in this topic - RSS

Home » Secret Server » Feature Request: password policy

Discuss best practices, feature requests and general advice.

show rated messages only |

11/16/2011 4:35:32 PM Ray E Posts: 4	Hi. I'm looking for several configuration options that fall under the general topic of password policy. For example, I'd like to be able to force a password expiration policy in some templates. Currently I can set the default number of days, but I'd prefer to be able to set the _maximum_ number of days a secret can go before expiring. It should also be smart enough to calculate the resulting furthest date in the future which could be set by a user. Likewise, I'd like to be able to set length and complexity requirements on secret passwords, similar to the way local user passwords are configurable. For example, Active Directory passwords must be at least 9 characters long.
	0 • link
11/17/2011 1:09:26 PM Ben Posts: 94	Hi Ray, Thanks for the feedback, I've taken the maximum number of days suggestion down as a feature request. The length and complexity requirements for Secret passwords have been added to the installed edition of Secret Server. This feature will be available when we update Secret Server Online, which will be happening in the upcoming weeks. Ben -- Thycotic Development Team
	0 • link
11/21/2011 2:42:21 AM Ray E Posts: 4	Nice. It's a good improvement. One suggestion: it's confusing to have have one setting control both the automatic generation of passwords and the complexity requirements. For example, the length limitations might be between 8 and 12, though you wouldn't necessarily want to restrict password storage to less than 13 characters. Fortunately it seems to ignore whatever maximum you enter, though it does enforce the minimum. It would be clearer to be able to define a policy for generating a password, and a policy to enforce restrictions on saving passwords. The downside would be creating incompatible policies (where it might auto generate a password that you couldn't save).
	0 • link
11/21/2011 12:44:25 PM Jonathan Administrator Posts: 591	Yes, thanks for the feedback! Our goal was to make it so that the generate would meet the requirements of the validation. We thought it would be weird if you hit "Generate" and Secret Server didn't create a password that met requirements. -- Secret Server 8.1 - Web Password Filler, SAP support, advanced discovery capabilities with rules. Need a free trial license? Send an email to sales@thycotic.com
	0 • link

show rated messages only |

Home » Secret Server » Feature Request: password policy