Password Security

Path: Security Settings->Password Security

INFO

For information about the GenAuth user pool version that supports the various benefits of the "Password Security" function, please check the Official Website "Pricing" Page. If your version does not support this benefit and you want to try it, you can activate the trial period. For an introduction to the trial period and how to activate it, please check Trial Period.

Passwords are related to the information security of enterprises and users. The system will require users to meet a certain level of complexity when registering or changing passwords.

In addition, enterprises may include different user groups: internal employees, outsourced employees, partners, etc., and different groups require different password rules. GenAuth supports configuring differentiated password policies for different entities, and adjusting the execution priority by moving the policy order up and down. At the same time, it also supports custom password encryption method to be compatible with the user password summary encryption logic of the historical system, so as to achieve perfect compatibility with the original system password policy.

INFO

The configuration will take effect on all applications.

Serial number Element Description 1 Create password policy

• Click this button to create a new password policy.
• You can create up to 30 password policies (including the default policy); when the upper limit is reached, the button will be grayed out. 2 Password Policy Show the password policy list, including the system default policy and the policy created by the administrator. 3 Custom password encryption method Compatible with the user password summary encryption logic of the historical system. 4 Execution order Execute password policies from top to bottom. You can adjust the execution order of policies by pressing and holding the icon on the left (visible when the mouse is hovering) and dragging. 5 Status After creating a new password policy, the policy is enabled by default. It can be closed as needed. After closing, the current policy will not be executed. 6 Delete Click the More button in the Operation column to delete the currently selected password policy. Note:
• After deletion, it cannot be restored. Please operate with caution!
• If all application subjects of the current policy are deleted, the system will automatically delete the policy. 7 Default Policy
• The default policy is effective for all user subjects and applies globally.
• The password strength is not detected by default.
• You can click to enter the policy details to modify password strength and password rotation policy.
• The default policy is placed at the bottom of the policy list and cannot be adjusted, closed, or deleted.