Setting Password Requirements

For security purposes, Integration Server places length and character restrictions on passwords for administrator and non-administrator users. Integration Server contains a default set of password requirements; however, you can change these with the Integration Server Administrator. A non-administrator must observe these restrictions when changing a password. An administrator user receives a warning if he or she changes a password to one that does not meet these restrictions.

You can use the watt.server.password.mode configuration property to specify whether or not to enforce the password restrictions when setting passwords for administrator or non-administrator users. When this property is set to strict, the password restrictions are enforced and when set to lax, the password restrictions are not enforced.

Field

Description

Default

Enable Password Change?

Whether users are allowed to change their passwords. These users must have developer privileges.

Yes

Minimum Password Length

Minimum number of characters (alphabetic characters, digits, and special characters combined) the password must contain.

Minimum Number of Upper Case Characters

Minimum number of upper case alphabetic characters the password must contain.

Minimum Number of Lower Case Characters

Minimum number of lower case alphabetic characters the password must contain.

Minimum Number of Digits

Minimum number of digits the password must contain.

Minimum Number of Special Characters (neither alphabetic nor digits)

Minimum number of special characters, such as asterisk (*), period (.), and question mark (?) the password must contain.

Note:

The use of special characters is regulated by the following restrictions:

A password cannot begin with an asterisk (*).

Passwords cannot contain quotation marks ("), backslashes (\), ampersands (&), or less-than signs (<). Use the watt.server.illegalUserChars configuration property to restrict the use of additional characters.