Passwords for all Workbench users, including the
admin user, must satisfy rules for password security.
These rules are enabled or disabled and set to specific values, as
determined by the values of properties in the
webstudio.properties file. You can edit the values of
the properties in
webstudio.properties to change the default settings.
To apply the changes that you make, you must then restart the Tools and
Frameworks server.
These rules are triggered not only when a Workbench administrator creates or updates users, or change passwords through the Workbench, but also if a Workbench administrator attempts to perform any user management operations through non-UI clients such as cURL commands.
Note
If the
webstudio.properties file contains invalid property
values -- for example, a non-numeric value for a property that requires a
numeric value -- errors occur during Workbench startup.
|
Rule |
Property in |
Data type |
Default value |
Enabled by default? |
Value that disables this rule |
|---|---|---|---|---|---|
|
Password minimum length. |
com.endeca.webstudio.password. minimum.length |
Integer |
8 |
Yes |
0 or comment out the rule |
|
Password must differ from user's User ID. |
com.endeca.webstudio.password. differ.user.id |
Boolean |
true |
Yes |
false |
|
Password must contain at least one number (0-9). |
com.endeca.webstudio. password.contain.number |
Boolean |
true |
Yes |
false |
|
Password must contain a special symbol. |
com.endeca.webstudio. password.symbols.set |
String |
~!@#$ %^&* ()_-+= {}[]| :;<>,./? |
No |
Empty string or comment this property |
|
Password must contain at least one uppercase and at least one lowercase letter. |
com.endeca.webstudio. password.mixed.case |
Boolean |
false |
No |
false or comment this property |
|
Password must not be one of the last N passwords. |
com.endeca.webstudio. password.history.size |
Integer |
3 |
No |
0 or comment this property |
|
Password must expire after N days Note: The expiry interval begins and ends at the hour of day when this rule is specified; for example, if an expiry interval of 10 days is specified at 11:00 A.M., the password will expire at 11:00 A.M. on the 10th day after the password was specified.
|
com.endeca.webstudio. password.expiry.days |
Integer |
90 |
No |
0 or comment this property |
|
Account must be locked after N unsuccessful attempts to log in to Workbench or to change the account password. |
com.endeca.webstudio. password.invalid.attempts |
Integer |
5 |
Yes |
0 or comment this property |
