Password Rules Configuration
The Password Rules Configuration screen allows you to configure rules for user passwords. The default settings for a password is that it needs to be at least six characters long and the characters can be of any type (i.e. capital letters, lower case letters, numbers, punctuation and spaces). You can change these default settings for the password through this screen.
Bookmarks to the headings on this page:
To access the Password Rules Configuration screen, click on the System Configuration
icon in the top right hand corner of the screen – a drop down list will appear under this icon. From this list, select Password Rules Configuration – the screen will appear.
If you change the password rules, the current users in the system will not be affected until they change their password.
Tip: To force current users to change their password, set the Status of the user account to Up For Review. When they try to log into Squiz Matrix, they will be asked to change their password according to the new password rules.
Manage Password Rules
This section allows you to change the rules for the user passwords. The Manage Password Rules section of the Password Rules Configuration screen is shown in the figure below.
The Manage Password Rules section of the Password Rules Configuration screen
The fields that are available in this section are outlined below:
- Minimum Length: enter the minimum allowable length for a user password. By default this value is set to 6.
- Disallow User Info: select Yes to restrict the use of user information in a password, such as username, first name and last name.
-
Character Rules: this section allows you to set rules for certain character types. By default, there are no rules applied to any of the character types. To create a rule, tick the Active box and click Commit. Two additional fields will appear as shown in the figure below for the Character Type of Capital letters.
For each character type you can choose to restrict, the following fields will appear:
The Character Rules section- Minimum Number: enter the minimum number of this type of character that must be included in the password. For example, in the figure shown above, the minimum number of Capital letters is 1. In other words, the user must include at least 1 capital letter in their password.
- Disallow Character Type: check this box to prevent the use of these types of characters in passwords.
Deleting a Password Rule for a Character Type
To delete a password rule for a character type, deselect the Active box and click Commit. The rule will be removed and a no rules will apply to this character type.
Example of How to Set Up Password Rules
To understand how to set up password rules consider the following example. We want to create a password rule that says a user has to use at least 2 lower case letters, 2 numeric digits and 1 punctuation character. They cannot, however, use spaces.
To do this, go to the Password Rules Configuration screen. In the Character Rules section, select the Active box for Lower case letters, Numeric digits, Punctuation characters and Spaces and click Commit. Additional fields will appear as shown in the figure below.
The Character Rules section
Enter the following information into the fields provided:
- For Lower case letters enter 2 into the Minimum Number field
- For Numeric digits enter 2 into the Minimum Number field
- For Punctuation characters enter 1 into the Minimum Number field
- For Spaces select the Disallow Character Type field
Once you have done that click Commit. The password rules have now been set for the system.
Password Blacklist
This section allows you to specify words that users cannot use in their passwords. The Password Blacklist section of the Password Rules Configuration screen is shown in the figure below.
The Password Blacklist section of the Password Rules Configuration screen
The fields that are available in this section are outlined below:
- Word List: specify the words that cannot be used as passwords by users, for example, your company name. You can add as many words as you like to the list. Separate each word with a new line.
- Exact Match: by default this field is ticked meaning that the system will only stop users using a word from the Word List as a password if its an exact match. For example, if grass is specified in the Word List and the user uses longgrass as their password, the system will allow the use of this password. If Exact Match is not selected, the system will stop users using these words within a password. For example, the user would not be able to use longgrass as the word grass is contained within the password.