Installation guide
Enforcing strong password security 4-17
Chapter 4: System Settings in the User/Group Management applet
Wave Global Administrator Guide
7 Choose the Security \ Permitted Passwords tab.
Important: By preventing easy-to-guess passwords, you can make your system much more
secure from unauthorized access. Vertical highly recommends checking all the options on
this tab to prevent toll fraud. When you change any of the options on this tab, users whose
passwords are now prohibited will be prompted to change them the next time they log on,
and will show up in the Security Analysis report (see Appendix A)
8 Use the following options to restrict the passwords that users can choose:
•
Minimum password length. Enter the minimum number of digits for a password. For
secure passwords, the minimum should be at least 5, and preferably 7 or more digits.
•
Prevent passwords that contain an account’s extension. A password that contains a
user’s extension number is especially easy to guess. Select this checkbox to prevent
the extension from being any part of the password. For example, a user at extension
337 could not have a password of 337, 33755, or 13378080.
•
Prevent passwords that contain entries from the following list. Select this checkbox
to prevent passwords from containing any of the digit strings in the list. Wave
provides a default list of easy-to-guess digit strings, and you can add your own entries
to the list.
Release 2.0
September 2010