earth_america
user_standard Log on
action_search_stroke
earth_america
Log on to rate and give feedback 1 2 3 4 5 Log on to rate
0
How to

How to


Products: AS-B, Edge Server, Enterprise Central, Enterprise Server, AS-P, Virtual Project Servers
Functionalities: Security
Product version: 2023, 2024
12/17/2022

Configuring the Password Policy

You configure the password policy to increase the password security on your system.

Show More
action_close

You can increase the password security by configuring a password policy that defines how passwords must be created by the users.

Policy customization

You can configure account policies that define a secure password for your systems according to the password policy of your organization.

You can enforce password history by deciding how frequently old passwords can be reused. With this policy, you can define the best strategy for discouraging users from alternating between several common password. WorkStation can handle up to 100 passwords for each user's password history.

You can prevent users from changing passwords immediately, by defining the minimum number of hours necessary between password changes. This feature stops users from working around password history policy settings and changing passwords several times to wipe the history and get back to the old password.

You can define maximum password age. This feature determines how long users can keep a password before they have to change it. Activate this feature if you want to force users to change their passwords periodically.

You can define how many characters have to be different in a new password compared to the old password. This feature prevents creation of common passwords.

You can define password complexity by defining the number, the type and the placement of characters that users must include in their passwords.

For more information, see Password Policy View .

Password policy uses a lead and shadow relationship. The password policy settings are sent to all attached automation servers in the system, and are edited only on the lead server. For more information, see Lead and Shadow Relationship .

Default policies

Password policies have the following default values.

  • The minimum number of hours between password changes is 0.

  • A password expires after 90 days.

  • The password history is set to 6.

  • At least 3 characters need to be different in the new password.

  • A password contains at least 8 characters.

  • A password contains at least 1 lowercase character.

  • Uppercase characters are not required in a password.

  • A password contains at least 1 numeric character.

  • The numeric character can be the first or last character, such as "123password".

  • A password contains at least 1 special character: !"#$%&'()*+,-./:;<=>?@[\]^_`{|}~´.

  • The special character can be the first or last character, such as "password!".

To configure the password policy

  1. In WorkStation, in the System Tree pane, select the EcoStruxure BMS server you want to configure.

  2. Click the Control Panel tab.

  3. Click Security Settings .

  4. Click Password policy .

  5. In the Password Policy dialog box, configure the password policy.

  6. Click the Save button

     
    action_zoom_plus_stroke
    .

See Also

  • Password Policy
  • Password Policy View
  • General Tab
  • Configuring the Password Policy using WebStation