Siebel Security Hardening Guide > Securing Siebel Business Applications > Implementing Password Management Policies >

General Password Policies

Implement the following general password management policies:

• Determine a password expiry period (except for the Siebel administrator).
• Determine the number of password failures allowed before an account is locked.
• Implement password syntax rules. See Defining Rules for Password Syntax.
• Implement password hashing. For additional information, see About Configuring Password Hashing for Users.
• Change the password of the SADMIN account regularly.

  During the Siebel Business Applications installation process, the Siebel administrator account (SADMIN) is created. You are required to specify a password for this account before you install and configure the Siebel database components. Change the password for the administrator account at regular intervals. For information on this task, see Siebel Security Guide.

• Change the password for Siebel utilities after installation.

  A number of Siebel command-line utilities can be used during the installation and configuration of Siebel Business Applications, for example:

  • srvrmgr
  • srvrcfg
  • srvredit

    When starting any of these utilities, you must specify the Siebel administrator user name and password in the command line as command flags. In a Siebel deployment with high-security requirements, it is recommended that you change the Siebel administrator user name and password used for these utilities after you have completed the Siebel implementation process.