| |
Password Validation Providers
The Password Validation provider manages and enforces a set of configurable password composition rules. When configured in a security realm, the Password Validation provider is automatically invoked by a supported authentication provider whenever a password is created or updated for a user in the realm. The Password Validation provider then performs a check to determine whether the password meets the criteria established by the composition rules, and the password is accepted or rejected as appropriate.
The following authentication providers can be used with the Password Validation provider:
- Default Authentication provider
- SQL Authenticator provider
- LDAP Authentication provider
- Oracle Internet Directory Authentication Provider
- Oracle Virtual Directory Authentication Provider
- Active Directory Authentication provider
- iPlanet Authentication provider
- Novell Authentication provider
- Open LDAP Authentication provider
Note: By default, the Default Authentication provider requires a minimum password length of 8 characters. However, the minimum password length enforced by the Default Authentication provider can be customized. In either case, if the Default Authentication provider and Password Validation provider are both configured in the security realm, and you attempt to create a password that does not meet the minimum length enforced by the Default Authentication provider, an error is generated.
|