Specifications
33
• Active DNS Host Format: The format of the unique Active DNS hostname used to access
reverse proxy web forwards.
Password Options
This page contains all necessary information pertaining to the configuration of the password
authentication module.
• Max Logon Attempts Before Lock: A value of zero disables this option; the default value is
3 logon attempts if after 3 attempts the account is temporarily locked.
• Max Lock Attempts Before Disable: The maximum number of temporary locks before the
account is permanently disabled. Use a value of zero to never lock accounts.
• Lock Duration: The default value is 300 seconds; all values are in seconds.
• Password Pattern: The pattern that all passwords must match.
• Password Pattern Description: This description is shown to the user when defining a
personal password.
• Days before Expiry Warning: The default value is 21, after which the warning will be
displayed to the user informing them to change their password.
• Days before Expiry: The default is 28 days approximately one month after which the user
will be forced to change password.
Password Pattern
The structure of an account password is based on regular expressions and is defaulted to, .{5,},
which defines a password with a minimum size of 5 characters. This expression is detailed in the
diagram below:
The security function password structure is built around the ‘regular expression’ syntax. Any valid
expression will be accepted to parse passwords an example is given below. Regular expressions are
described in greater detail in Appendix A.
Expression
Meaning
X(n)
X exactly n number of times
X(n,m)
X between n and m
.[^\s]{n,m}
Any character except white spaces with a length between n-m
\w[n,m]
Word character [a-z,A-Z,_,0-9] between n-m
Session Options
Session options are security parameters used by the system to control how user sessions behave.