Password Requirements
The complexity of passwords can be altered on a system by a change to the HitecLabs.Data- Store.DataStoreService.exe.Config file.
Locate the file HitecLabs.DataStore.DataStoreService.exe.Config and edit it. Locate the following section:
<HitecLabs.MembershipManager.Settings>
<setting name="CaseSensitivePasswords" serializeAs="String">
<value>True</value>
</setting>
<setting name="DefaultPassword" serializeAs="String">
<value>password</value>
</setting>
<setting name="MaximumPasswordLength" serializeAs="String">
<value>20</value>
</setting>
<setting name="MinimumPasswordLength" serializeAs="String">
<value>5</value>
</setting>
<setting name="PasswordHistoryLength" serializeAs="String">
<value>20</value>
</setting>
<setting name="PasswordExpiryDays" serializeAs="String">
<value>0</value>
</setting>
<setting name="PasswordRequirements" serializeAs="String">
<value>Letter, Digit</value>
</setting>
<setting name="UserMustChangePasswordAfterCreation" serializeAs="String">
<value>False</value>
</setting>
<setting name="UserMustChangePasswordAfterReset" serializeAs="String">
<value>False</value>
</setting>
<setting name="MaximumPermittedLoginFailures" serializeAs="String">
<value>3</value>
</setting>
</HitecLabs.MembershipManager.Settings>
Where:
CaseSensitivePasswords can be True or False. When set to True, the password must be entered in the case in which it was set. When set to False, the password can be entered in any case, providing the order of the characters is correct.
DefaultPassword sets the default password for all new DataStoreDSX accounts.
MaximumPasswordLength sets the maximum length of a password. Enter the maximum number of characters that will be accepted.
MinimumPasswordLength sets the minimum length of a password. Enter the minimum number of characters that will be accepted.
PasswordHistoryLength sets the number of unique passwords that must be configured before the User may reuse old passwords.
PasswordExpiryDays sets the numbers or days before a password must be changed. A value of 0 disables the Password expiry so the user can keep the same password for ever.
PasswordRequirements can take combinations of the following:
- None – there no password requirements.
- Digit – the password must contain at least one digit.
- LowercaseLetter – the password must contain at least one lower case letter.
- UppercaseLetter – the password must contain at least one upper case letter.
- NonAlphanumericCharacter – the password must contain at least one non-alphanumeric character. That is, a character that is not a letter or a number (for example,*).
- NoConsecutiveRepeatedCharacters – the password must not contain consecutive repeated characters (for example, ee or 11).
UserMustChangePasswordAfterCreation can be set to True or False. When set to True, a User must change their password from the password assigned to them when their account was created when they first log in to a DataStoreDSX application. This ensures nobody other than the user will know their password. When set to False, a User can keep the password that was assigned to them when their account was created.
UserMustChangePasswordAfterReset can be set to True or False. When set to True, after the administrator has reset a User's password, when the User first logs back in, they will be prompted to change the password. This ensures nobody other than the user will know their password. When set to False, a User can keep the password that was assigned to them when their password was reset.
MaximumPermittedLoginFailures sets the maximum number of unsuccessful password attempts a user can have before their account is disabled.
Make the required changes, save the file and restart the DataStoreDSX Service.