Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Rajat Rastogi (Rajat Rastogi)
Toyota Financial Services
Pega Practice Architect
Toyota Financial Services
AU
Rajat Rastogi Member since 2018 1 post
Toyota Financial Services
Posted: Sep 15, 2015
Last activity: Sep 16, 2015
Posted: 15 Sep 2015 4:35 EDT
Last activity: 16 Sep 2015 10:29 EDT
Closed

Password Control in 5.5 SP1

We are looking to implement the following in 5.5 SP1. Please advice.

1) Users must provide the current password, other strong authentication details or verify their user identity before the new password is set.

2) User passwords must change every 90 days.

3) A minimum password history of 6 generations shall be maintained.

4) Password must have a minimum of 8 characters.

5) Prompt users to change password 14 days before expiration

To see attachments, please log in.
Security

Posted: 9 years ago
Posted: 16 Sep 2015 10:29 EDT
Chris Koyl (ChrisKoyl)
PEGA
Senior Fellow, Technical Support, Runtime Engine
Pegasystems Inc.
US

Hi Rajat,


Security Policy configuration was added in PRPC 6.3SP1.

PDN Writeup: https://docs-previous.pega.com/configuring-login-security-and-password-policies-prpc-63-sp1-pega-71x

This gives you pretty much what you need except not sure about verifying user identity before new password set other than current password and warning/promting 14 days before experation. This does also have CAPTCHA implimentation.

We can't port this back to 5.5SP1. Any chance you are planning an upgrade soon?

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice