This article is applicable to ENA v17.0 P04 and below.
- For ENA v17.0 P05 to Entuity v20.0, please see this article.
- For Entuity v21.0 upwards, please see this article.
To specify the security settings of a user account
To specify password complexity rules
To create a user account:
A newly created user account consists of a username, password, and membership of the All Users user group.
- In the Main Menu, click Administration.
- Click Account Management to open the Account Management page.
- In multi-server environments, select the server for which you want to create an account.
- In the Users section, click Add. This will open the Add User window.
- Enter the desired username and password, and then confirm the password.
- Click OK to save the details, and click OK to close the confirmation window.
To change a user's password:
You can change user account passwords if you are an Administrator.
- In the Main Menu, click Administration.
- Click Account Management to open the Account Management page.
- In multi-server environments, select the server on which you want to change the user's password.
- In the Users section, select the user account for which you want to change the password.
- Click Change Password to open the Change Password for [username] window.
- Enter the desired new password, and then confirm the new password.
- Click OK to save the new password, or Cancel to keep the existing password. A new password will come into effect the next time the user logs into Entuity.
- Click OK to close the confirmation window.
To specify the security settings of a user account:
You can specify the security settings of user accounts to meet your requirements.
- In the Main Menu, click Administration.
- Click Account Management to open the Account Management page.
- In multi-server environments, select the server on which you want to change the user account's security settings.
- In the Users section, select the user account for which you want to change security settings.
- Click Settings to open the Settings window.
- Specify the security settings you would like. You have the option to:
- specify the number of minutes of inactivity after which the user's session will be timed out (Timeout after field).
- specify the number of days of inactivity after which the user's account will be locked (Lock account after).
- specify the number of failed attempts to login after which the user's account will be locked (Lock account after).
- specify the number of days after which a user will be forced to change their password (Force password change after).
- Force a password change when the user next goes to login (Force password change on next logon).
- Click OK to save the new security settings, or click Cancel to keep the existing settings.
- Click OK to close the confirmation window.
To specify password complexity rules
Applicable for ENA v17.0 P03 upwards
In ENA, you can enable password complexity rules to which every internal user password must comply. By default, this is turned off. When this option is enabled, all internal passwords must comply with the following rules:
- Password must be at least 8 characters
- Password must contain at least one Upper and Lower case character
- Password must contain one non alphanumeric character (~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/)
- Password must contain one numeric value (Base 10 0 through 9)
- Password cannot be same as the previous one
To enable password complexity rules:
You can enable this option during the installation of ENA or at any time afterwards. If enabling this option after installation, then you will need to restart Tomcat in order for the change to come into effect.
Please note that this option cannot be enabled or disabled from the web UI.
To enable the option:
- go to entuity_home\etc.
- enter the following in security.config.xml under the Authentication section:
<enforcePasswordComplexity>true</enforcePasswordComplexity> - Password complicity will not be checked for the user's existing password during login. However, users with the Administrator permission can force the user(s) to change their password on the next login to ENA. This can be achieved from the Account Management page.
Enabling this option will not impact LDAP or SSO users.
To delete a user account:
- In the Main Menu, click Administration.
- Click Account Management to open the Account Management page.
- In multi-server environments, select the server from which you want to delete the user account.
- In the Users section, select the user account you want to delete.
- Click Remove. A confirmation window will appear. Click Yes.
Comments
0 comments
Please sign in to leave a comment.