Setting Password Requirements
For security purposes, Integration Server places length and character restrictions on passwords for administrator and non-administrator users. Integration Server contains a default set of password requirements; however, you can change these with the Integration Server Administrator. A non-administrator must observe these restrictions when changing a password. An administrator user receives a warning if he or she changes a password to one that does not meet these restrictions.
You can use the watt.server.password.mode configuration property to specify whether or not to enforce the password restrictions when setting passwords for administrator or non-administrator users. When this property is set to strict, the password restrictions are enforced and when set to lax, the password restrictions are not enforced.
To set password length and character requirements for non-Administrator users
1. Open the Integration Server Administrator if it is not already open.
2. In the Security menu of the Navigation panel, click User Management.
3. Click Password Restrictions.
4. Click Edit Password Restrictions.
5. Fill in information in the following fields:
Field | Description | Default |
Enable Password Change? | Whether users are allowed to change their passwords. These users must have developer privileges. | Yes |
Minimum Password Length | Minimum number of characters (alphabetic characters, digits, and special characters combined) the password must contain. | 8 |
Minimum Number of Upper Case Characters | Minimum number of upper case alphabetic characters the password must contain. | 2 |
Minimum Number of Lower Case Characters | Minimum number of lower case alphabetic characters the password must contain. | 2 |
Minimum Number of Digits | Minimum number of digits the password must contain. | 1 |
Minimum Number of Special Characters (neither alphabetic nor digits) | Minimum number of special characters, such as asterisk (*), period (.), and question mark (?) the password must contain. Note: | The use of special characters is regulated by the following restrictions: A password cannot begin with an asterisk (*). Passwords cannot contain quotation marks ("), backslashes (\), ampersands (&), or less-than signs (<). Use the watt.server.illegalUserChars configuration property to restrict the use of additional characters. |
| 1 |