Enforcing Password complexity for user logins - how to check?
Sankarmn
Community Edition User ✭✭
How can we verify if an user is changing the password like,
1. are they putting in 12 to 20 characters
2..Not a dictionary word
3. using special characters
4. not to use the previous 6 passwords
5. not to use username
6. avoid multiple identical consecutive characters
Is there a password complexity function to verify against a user password?
Tagged:
0
Answers
To control password requirements for users use a PASSWORD PROFILE described here:
https://www.vertica.com/docs/10.0.x/HTML/Content/Authoring/SQLReferenceManual/Statements/CREATEPROFILE.htm
And a CREATE USER statement described here:
https://www.vertica.com/docs/10.0.x/HTML/Content/Authoring/SQLReferenceManual/Statements/CREATEUSER.htm
For example:
@mosheg , thanks for the links. Since the DBA sets them as I don't have clarity on what's set. In that case how do I cross check what profile options has been used?
Also I am looking for the below options to set in profile. Are these functionality available?
1. Not contain multiple identical consecutive characters
2. Not contain user name as password
3. Not be a common password like 'password1234'
4. Not contain dictionary word
5. Not have been used in the last year
6. Differ from the last password by at least 12 characters
TIA
How to the view the set profile options through vsql?
Can the above 6 options be set in profile?