In this Topic Hide
To get to the Password options settings section:
1. Click on the Settings option in the main ATS Security menu.
2. The Settings blade loads with four options in the blade menu: Password options, Lockout options, Customize login page, User registration.
3. Click on the Password options option in the blade menu.
4. The password options are loaded with two sections: Password complexity and Password re-use and expiration.
There are Save and Discard options in the top right corner of the Settings blade - Password options tab. These options are disabled. Once you modify something in the tab the Save and Discard options become enabled. Your changes will be lost or ignored in case you close this blade or navigate to another tab without clicking on the Save option.
The password complexity in ATS Security is based on 5 categories:
The password complexity settings are enforced in the following cases:
1. When adding new users from the user interface
2. When changing user password by admin user
3. Upon password change (by user) from login page or from user options or when user password has expired
4. Upon password reset (by user)
To configure password complexity:
1. Make the desired settings in the Password complexity section of the Password options tab in Security blade.
Check the Require digits check-box to require digits in password (at least one digit will be expected) OR Remove the check from the Require digits check-box to not require digits in password.
Check the Require special characters check-box to require special characters in password (at least one special character will be expected) OR Remove the check from the Require special characters check-box to not require special characters in password.
Check the Require uppercase letters check-box to require uppercase letters in password (at least one uppercase letter will be expected) OR Remove the check from the Require uppercase letters check-box to not require uppercase letters in password.
Check the Require lowercase letters check-box to require lowercase letters in password (at least one lowercase letter will be expected) OR Remove the check from the Require lowercase letters check-box to not require lowercase letters in password.
Select password length in the Require length field. Minimal possible length value is 6.
2. The Save and Discard options become enabled.
3. Click on the Save option.
4. "Settings successfully saved" success notification appears.
ATS Security stores previously used user passwords and disallows the user to use one of these "old" passwords when changing or resetting password. The number of passwords stored in passwords history is configurable from the Password options tab of the Settings blade.
In ATS Security it is possible to enable or disable password expiration for users. When password expiration is enabled and a user's password has expired the user will be redirected to the Change password screen to provide a new password.
To set the number of passwords to be checked when setting new user password:
1. Select or enter a number in the Previous passwords to check field in the Password options tab in Security blade. Minimal possible value for this field is 0. This means that no password history will be stored for the user so the user can re-use any of the old passwords when setting a new password (except the current password).
2. The Save and Discard options become enabled.
3. Click on the Save option.
4. "Settings successfully saved" success notification appears.
To disable password expiration:
1. Check the Password never expires check-box.
2. The Password duration (day) field becomes disabled i.e. can not be edited. The Save and Discard options become enabled.
3. Click on the Save option.
4. "Settings successfully saved" success notification appears.
To enable password expiration:
1. Remove the check from the Password never expires check-box.
2. The Password duration (day) field becomes enabled i.e. can be edited.
3. Select duration of the password (in days) from the Password duration (day) field. Minimal possible value for this field is 1.
4. The Save and Discard options become enabled.
5. Click on the Save option.
6. "Settings successfully saved" success notification appears.
When passwords expiration is enabled then two additional fields appear (become visible) in the Account section of the user details blade (for local users only):
Using the Password never expires check-box enables password expiration settings to be ignored for certain users.