BSChainarong Contributor.
Contributor.
599 views

SSPR 3.3.1 with spacebar in password policy


Hello,

I found that SSPR3.3.1 allows the spacebar as the password.
SSPR uses eDirectory as user repository in my environment and it allows
user to use spacebar as password.
I also use IDM to synchronise password to target application but some
applications are not allowed spacebar password.

So, I want to define _password_policy_with_not_allow_spacebar_ but I
cannot find where is it.

Thanks,


--
bschainarong
------------------------------------------------------------------------
bschainarong's Profile: https://forums.netiq.com/member.php?userid=10626
View this thread: https://forums.netiq.com/showthread.php?t=56331

0 Likes
1 Reply
Knowledge Partner
Knowledge Partner

Re: SSPR 3.3.1 with spacebar in password policy

I'm not sure exactly where you have your password policy defined, but if
in eDirectory (presumably using NMAS) you can exclude any single character
by creating an "Excluded Password" of just that value, so if you create an
excluded password which is just a single space, then spaces will not be
allowed anywhere in subsequent passwords.

If you are using SSPR's password policies, then you can use the
"Disallowed Regular Expression Matches (Advanced)" under the policy
defined for users and just have your regular expression there be a single
space with no extra anchors, in which case anything with a single space
will be disallowed.

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.