Neoview User Management and Security Administration Guide (R2.5)

ManualsBrandsHP ManualsSoftwareHP Neoview Release 2.5 Software

Table 2-3 Password Quality and Control Policies (continued)

CommentRange

Initial

Value

Policy Name

(HPDM)

Input Parameter

Name (NCI)Display Name (NCI)

Specifies whether the password is

required to contain at least one numeric

character

Y or NNNumeric

Character

Required

digitreqPwdQualReqDigit

Specifies whether the password is

required to contain at least one

nonalphanumeric character

Y or NNSpecial

Character

Required

splcharreqPwdQualReqSpecChar

Number of days during which a

platform user or locally authenticated

database user can log on with a

password that has expired, for the

purpose of changing the password.

Once the grace period has expired, the

user must ask a person in the

ROLE.MGR or ROLE.SECMGR role

(depending on whether the user is a

database user or a platform user) to

change the expired password.

NOTE: This feature is unrelated to the

grace count feature, which allows an

LDAP user to log on a certain number

of times after password expiration for

the purpose of changing the password.

This grace count is configured and

maintained on the external LDAP

server, however, and is not governed

by security policies on the Neoview

platform.

0 to 3657Grace period

after

expiration

(days)

gperiodPwdCtrlGracePeriod

Specifies whether the password can

include the username. If this policy is

set to prohibit the user name from

appearing, then that name cannot

appear in the password in any location

or in any mix of upper and lowercase,

e.g., a user named “wallace” could not

have the password “38wallace” or

“pstWALLACE” or “*bWaLlAce46.”

Y or NNDo Not

Allow to

Contain User

Name

nounamePwdQualNoUserName

Specifies whether the password can

contain more than two consecutive

instances of the same character.

Y or NNDo Not

Repeat a

Character

More Than

Once in

Succession

norepeatcharsPwdQualNoRepeatChars

Specifies how many days prior to

expiration the user may change the

password. For example, if the value is

3, the user can change the password 3

days before it expires (but no earlier

than that). 0 means the user can change

the password at any time.

0 to 3650May Change

Before

Expiration

(days)

chgwithinPwdCanChangeWithin

Number of previous passwords retained

to prevent a user from repeating a

previous password (for example, a

value of 10 means that a new password

is not allowed to be the same as any of

the user's previous 10 passwords).

0 to 6010History LevelphistPwdHistory

Managing Security Policies 45