Password Policies

Password Policy

In the applications you develop with Kuika, you can define the users to create strong passwords, protect them and determine the renewal frequency with Password Policy.

This training content consists of the following topics:

Adding Password Policy to Application
Password Policy Settings

1. Adding Password Policy to Application

Open the Configuration Manager view mode to add a Password Policy to the application you are developing.

Open the App Settings tab of the configuration you want to add a password policy to.

On the screen that opens, in the Authentication & Authorization section, click the drop-down menu titled Password Policy. This menu lists the Password policies you have added before.

If you have not created a Password policy before, you can create a new Password policy by clicking ADD NEW in the menu.

2. Password Policy Settings

You can define Password policy specific to the application you have developed.

Start by giving a name to the mod titled Password Policy Settings.
Via the Characters and Size tab, you can specify the characters that can and/or cannot be used in Passwords, and password lengths.
Under Must Contains, you can set the lowercase, uppercase, numeric, and special character inclusion status of the password, as well as the minimum number of characters. Also, if you want it to contain special characters, you can set the special characters that can be used.
Under Must NOT Contains, you can set whether the password does not contain certain words (specifically defined), consecutive numbers, repeated letters, the user's date of birth, and the user's name and surname.
You can set the minimum and maximum character lengths with Password Length.
Through the Locking tab, you can set the expiration date of the password, lock the account on incorrect password entry, CAPTCHA, and reuse of the last used password.

Under Password Age, you can set the minimum and maximum number of days the password will be valid. You can also set how many days before the password expires the user will be notified.
Under Account Lockout, you can set the maximum number of times the password will be entered incorrectly to lock the account for a certain period of time; You can specify the amount of time it takes to retry entering the password.
Under CAPTCHA, you can set the maximum number of incorrect CAPTCHA attempts and the maximum number of incorrect passwords that can be entered for CAPTCHA to be active.
Under Last Passwords, you can set whether the last used password can be reused when setting a new password, and the new password will not be the same as how many last passwords.

Last updated 10 months ago