Question
Lloyds Banking Group PLC
GB
Last activity: 3 Jun 2019 10:58 EDT
PEGA Security Policies | Password aging
Say we have enabled the pega security policies, it is global to all applications on the same platform and applied to all profiles using basic authentication.
However, is there an option to exclude certain operators from being impacted by these policies.
I believe the exclusion list for "Operator disablement policy" is specific to that policy and the operators listed here will still be forced to change their passwords and strength of passwords as normal?
Accepted Solution
Lloyds Banking Group PLC
GB
Based on our testing - the exclusion list doesn't exclude the users listed from all the policies and it is specific only to the "Operator disablement policy"
Pegasystems Inc.
FR
Hello,
I don't know about that. I thought you were either impacted by the policy or not and if not, I don't think you will have to change your password then. But I'm not 100% sure.
Lloyds Banking Group PLC
GB
Thank you Marc.
Would be good if someone can confirm, if the policies can be skipped for certain users while applying it for everyone else? i.e, is there an extension point or something similar to this check which can be customized to skip all the policies for certain operator profiles?
we are in v7.3.1
Accepted Solution
Lloyds Banking Group PLC
GB
Based on our testing - the exclusion list doesn't exclude the users listed from all the policies and it is specific only to the "Operator disablement policy"