Follow

Corporate Password Policy  (Enterprise Edition)

Corporate Password Policy

LogMeOnce Enterprise edition makes it easy to create a company-wide password security policy. Use the following template to establish "Security Best Practices”.

Organization Password policy can be access from this URL: https://<YourLogMeOnceDomain>.logmeonce.com/console/policy

or, please go to Smart Menu and under Security Section, click on Password Policy icon.

 

SmartMenu-PasswordPolicy.png

The Enterprise Edition Password Policy provides two password policies for master password and application password. However, you will have flexibility in defining an unlimited number of custom application password policies. As a default, it has two policies as shown below:

  • Default Master Password Policy
  • Default Application Password Policy

PasswordPolicy5.png

The Default Master Password Policy for your organization is shown below and consists of the following rules:

DefaultMasterPasswordPolicy.png

User's passwords expire in "specific time/duration"
 
Users will have to periodically change their passwords. The options to change your master password are set for: Never, Every 1 month, Every 2 months, Every 3 months, Every 6 months and Every 1 year. User will be requested to change their master password based on selected policy.
 
Enforce password history
This setting determines the number of unique new passwords that have to be associated with a user account before an old password can be reused. The options are set for: No Restrictions, 3 remembered passwords, 5 remembered passwords, Never use old passwords.
 
Minimum Password Policy for Master Password
This setting is used for LogMeOnce Master Password Policy when the user is logged in to LogMeOnce.

"Master password" must meet complexity requirements with a policy setting considered important for a strong password for your organization. As an administrator, you can define what should the minimum password policy for your User accounts. All options shown below are selectable and are based on your requirements;

 

1. The minimum password length
2. The password contains characters from uppercase (A through Z)
3. The password contains characters from lowercase letters (a through z)
4. The password contains characters from base 10 digits (0 through 9)
5. The password contains characters Non-alphanumeric characters (special characters): (~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/)

The password complexity requirements are enforced when master passwords are changed or created.

 
The Default Application Password Policy for your organization shown below.
 
DefaultApplicationPasswordPolicy.png
Minimum Password Policy for Application Password
This setting is used for Application Password Policy.

"Application password" must meet complexity requirements with a policy setting considered important for a strong password for your organization. As an administrator, you can define what should be the minimum password policy for your Users' applications. All options shown below are selectable and are based on your requirements;

 

1. The minimum password length
2. The password contains characters from uppercase (A through Z)
3. The password contains characters from lowercase letters (a through z)
4. The password contains characters from base 10 digits (0 through 9)
5. The password contains characters Non-alphanumeric characters (special characters): (~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/)

The password complexity requirements are enforced when application passwords are changed or created.

 The Custom Application Password Policy for your organization shown below. The custom application policy has two tabs; the "General Information" tab defines your custom password policy, and "Assign Applications" tab is to assign applications to the custom application password policy.

 CustomApplicationPasswordPolicy.png
Minimum Password Policy for Application Password
This setting is used for Application Password Policy.

"Application password" must meet complexity requirements with a policy setting considered important for a strong password for your organization. As an administrator, you can define what should be the minimum password policy for your Users' applications. All options shown below are selectable and are based on your requirements;

 

1. The minimum password length
2. The password contains characters from uppercase (A through Z)
3. The password contains characters from lowercase letters (a through z)
4. The password contains characters from base 10 digits (0 through 9)
5. The password contains characters Non-alphanumeric characters (special characters): (~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/)

The password complexity requirements are enforced when application passwords are changed or created.

After you have created  your custom password policy, select the Assign Application tab and select applications from your corporate catalogue to adhere to your custom application policy.

CustomApplicationPasswordPolicy2.png

You can create unlimited number of custom application password policy.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

0 Comments

Article is closed for comments.