Security guidelines
Login guidelines
Maximum number of failed login attempts
This defines how often a user may attempt to log in again after a login has failed, such as because the password was entered incorrectly.
If the number of failed login attempts exceeds the value entered here, the corresponding user account is blocked.
In the "User" module, you will find the "Login attempts" data field, in which the number of failed login attempts is stored, in the schema manager.
Password guidelines
Minimum password length
Defines the minimum number of characters that must be entered so that the password is valid. When passwords are created that fall below this number, an error message will be shown.
Allowed characters
Here, you define which characters may be used for passwords.
Illegal characters
Here, you exclude those characters that may not be used in passwords.
Reject if regular expression matches
Allows you to enter a regular expression that will be used to check characters which are not allowed in the password. If, for example, the expression ^([A-Za-z0-9ÄÖÜäöü]{6,40})$ is entered in the corresponding field to the right of the setting, passwords with six to 40 characters containing upper and lower case letters and umlauts in upper and lower case would not be permitted.
Test for character repeats
Enables you to restrict the frequency with which a preset part of the password can be repeated within the password.
Reject passwords found in dictionary
This setting rejects passwords that only consist of known words such as "flower" or "birthday".
Reject passwords found in history
This setting causes passwords that were already used to be declined. You can also specify whether all or only the last passwords should be rejected.
Reject letter sequences
Causes passwords in which letters appear in sequence (e.g. "ABC") to be rejected.
Reject numeric sequences
Causes passwords in which numbers appear in sequence (e.g. "123") to be rejected.
Reject passwords containing user names
Declines passwords that contain the user name.
Reject passwords with whitespace
Prevents passwords from being used that contain spaces.
Account guidelines
The settings possible here serve as default values when creating new users. They are not transferred to existing accounts in the event of a change.
Password expires
Here you specify that a password has the expiry date defined in password management.
User must change password at next login
This setting means the user will be requested to enter a new password when they log in with an expired password.
User cannot change password
Here, you can specify that users are allowed to change their password. To do this, the link that can be used to change the password is hidden in the login dialog.