企业绩效管理网

 找回密码
 立即注册

QQ登录

只需一步,快速开始

查看: 570|回复: 7

Password restrictions

[复制链接]

69

主题

368

帖子

521

积分

高级会员

Rank: 4

积分
521
QQ
发表于 2014-3-19 22:20:42 | 显示全部楼层 |阅读模式
Hello,
Is there any way to set some restrictions to passwords, when users do not use integrated login mode?
We would like to set the minimal length and maybe some more conditions, but I think it is not possible in TM1. My current knowledge about TM1 is that I even cannot forbid users to set a blank password.
But maybe I am not aware of TM1 all functionalities or some Tips&Tricks that would do the thing.
Regards.

PS. Right now I'm on 9.4.1 FP2 HF 16
回复

使用道具 举报

80

主题

402

帖子

587

积分

高级会员

Rank: 4

积分
587
QQ
发表于 2014-3-20 00:18:40 | 显示全部楼层
you can read up on the Operations Guide under TM1 config parameters and the part on maintaining users and groups . you can set the minimum length and expiry days if you are using TM1 authentication.
回复 支持 反对

使用道具 举报

67

主题

399

帖子

555

积分

高级会员

Rank: 4

积分
555
QQ
发表于 2014-3-20 00:30:47 | 显示全部楼层
harrytm1 wrote:you can read up on the Operations Guide under TM1 config parameters and the part on maintaining users and groups . you can set the minimum length and expiry days if you are using TM1 authentication.

Though it's important to remember that the expiry days feature is (in itself) all but useless except, perhaps, for limiting the access of short term contractors. Once the password expires, it expires; it doesn't force you to change it, it just won't let the user log in any more.

Requests for a "real" password expiry function date back years, and Applix / Cognos / IBM have shown no inclination to create it. The closest you can get to it is a bit of Steve Vincent wizardry described in this thread:
viewtopic.php?f=3&t=440&p=2752
回复 支持 反对

使用道具 举报

81

主题

424

帖子

616

积分

高级会员

Rank: 4

积分
616
QQ
发表于 2014-3-20 00:35:00 | 显示全部楼层
If you put it to Iboglix I am quite sure they would point you to the integrated login facility. This passes authentication to another provider (normally Microsoft Active Directory) which has rather more grown up password management.

9.4 takes it further, supporting Cognos authentication, but that still ends up being linked to another provider. The pain with the latter is for laptop demos since most of us don't run Server2003/8 with AD on our laptops. After much pain and suffering trying to get MS' lightweight standalone AD tool 'ADAM' working, we finished up using SunOne, which was fine. Doesn't affect 'proper' setups though.
回复 支持 反对

使用道具 举报

79

主题

383

帖子

562

积分

高级会员

Rank: 4

积分
562
QQ
发表于 2014-3-20 00:38:17 | 显示全部楼层
and our IT policy forbids linking software to windows accounts so we're stuck with the best we can do with rules  

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?立即注册

x
回复 支持 反对

使用道具 举报

74

主题

421

帖子

580

积分

高级会员

Rank: 4

积分
580
QQ
发表于 2014-3-20 01:26:14 | 显示全部楼层
hi alan,

so if i set the expiry to 30 days, when will the user gets prompted to change password? With 5 days remaining?

Also, if the user DOES change the password, does the expiry days get reset? i believe TM1 is using the control cube that stores that date timestamp of last password change and apply the expiry days onto it.

even if the user does not change the password, the Admin can still reset the password after 30 days and the ID will still be usable, correct?
回复 支持 反对

使用道具 举报

71

主题

393

帖子

560

积分

高级会员

Rank: 4

积分
560
QQ
发表于 2014-3-20 01:40:17 | 显示全部楼层
I did say 'normally' AD. You can link to another LDAP provider if you prefer eg (as I mentioned) SunOne. I don't pretend to know LDAP authentication products well but there's a lot of them out there. Personally I'd prefer Iboglix to look after the calculation engine rather than the authentication.
回复 支持 反对

使用道具 举报

86

主题

397

帖子

596

积分

高级会员

Rank: 4

积分
596
QQ
发表于 2014-3-20 02:48:40 | 显示全部楼层
Thank you for all the answers.
Shame on me, I did not find the info in Operations Guide.
Regards,
Jaroslaw
回复 支持 反对

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

QQ|手机版|小黑屋|企业绩效管理网 ( 京ICP备14007298号   

GMT+8, 2020-7-5 15:09 , Processed in 0.172208 second(s), 13 queries , Memcache On.

Powered by Discuz! X3.1 Licensed

© 2001-2013 Comsenz Inc.

快速回复 返回顶部 返回列表