jpdalbec Absent Member.
Absent Member.
1044 views

SSPR 4.1.0.6 Random Passwords

The random password generator appears to ignore our nspmcomplexityrules (length >= 8, 2/4 character classes). I was led to believe that updating to 4.1.0.6 would make it respect those rules but I see random passwords such as "nearby" in the list. Is there a problem with our configuration or was I misled?
Thanks,
John Dalbec
Software Specialist 2
Youngstown State University
0 Likes
7 Replies
jpdalbec Absent Member.
Absent Member.

Re: SSPR 4.1.0.6 Random Passwords

We have 6 password policy objects in eDirectory. Does SSPR know (based on the user) which one to use to generate random passwords or does it choose one randomly for each password?
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: SSPR 4.1.0.6 Random Passwords

jpdalbec,

>
> We have 6 password policy objects in eDirectory. Does SSPR know (based
> on the user) which one to use to generate random passwords or does it
> choose one randomly for each password?
>
>

I have not experimented with the random password option yet, but I
wonder what would happen if you configured a default password policy
within SSPR itself that enforces the complexity you need -- maybe the
random password generator will observe that policy?

HTH

0 Likes
Knowledge Partner
Knowledge Partner

Re: SSPR 4.1.0.6 Random Passwords

In my experience with SSPR 3.x the random password used by the help desk module uses the nspmcomplexityrules, I had it at (length >= 8, 2/4 character classes) and it worked fine.
0 Likes
-Magnus- Super Contributor.
Super Contributor.

Re: SSPR 4.1.0.6 Random Passwords

I also have trouble getting random passwords in the helpdeskmodule,to match the password rule..

I have 4.2.0.1 ..
0 Likes
jpdalbec Absent Member.
Absent Member.

Re: SSPR 4.1.0.6 Random Passwords

I just installed 4.2.0.1, same issue. If I switch to Windows 2008 complexity, it seems to work. However, our approved end-user password policy requires me to configure the exception limit at 3 (i.e. only 2 character classes required). This appears to work for setting a password from ldapmodify, but SSPR limits the number of exceptions to 2 regardless of the password policy setting. If this is configurable, I haven't found where to set it.
0 Likes
jpdalbec Absent Member.
Absent Member.

Re: SSPR 4.1.0.6 Random Passwords

I did find an entry in the Default password policy for the number of AD 2008 complexity exceptions. However this doesn't change the limit of 2 even if I set it higher. I installed 4.2.0.1 in production and our tech desk likes to use specific passwords that don't satisfy full Microsoft complexity. I can set such a password on my own account, but the helpdesk module doesn't allow setting it on someone else's account. Changing enforce user password policy to false doesn't help. Is it related to the helpdesk admin's own password policy?
0 Likes
jpdalbec Absent Member.
Absent Member.

Re: SSPR 4.1.0.6 Random Passwords

Setting admin accounts and regular accounts to the same policy seems to work. Why would the helpdesk module be enforcing the helpdesk administrator's password policy when they're setting the password for an end user?
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.