Security Policy

Property

Value

Description

ume.logon.security_policy.
auto_unlock_time

Default value is 60.

0 = Deactivate this option. The user remains locked.

Number of minutes before a user ID is unlocked after a series of failed logon attempts.

ume.logon.security_policy.
cert_logon_required

Default value is FALSE.

Defines whether certificate logon is required.

ume.logon.security_policy.
lock_after_invalid_attempts

Default value is 6.

Possible values: 0 to 9999

0 = Infinite number of failed logon attempts allowed.

Number of failed logon attempts before user is locked.

ume.logon.security_policy.
log_client_hostaddress

See Security Audit.

ume.logon.security_policy.
log_client_hostname

See Security Audit.

ume.logon.security_policy.
oldpass_in_newpass_allowed

Default value is TRUE.

Defines whether old password can be part of new password.

ume.logon.security_policy.
password_alpha_numeric_required

Default value is 0.

Minimum number of alphabetic and numeric characters in passwords.

For example if the property is set to 3, passwords must contain at least 3 letters and at least 3 numbers.

ume.logon.security_policy.
password_change_allowed

Default value is TRUE.

TRUE = Users can change their passwords. Administrators can reset users’ passwords.
(Default value)

FALSE = Users cannot change their passwords. If an administrator resets a user’s password, this has no effect.

ume.logon.security_policy.
password_change_required

Default value is TRUE.

Determines if a newly created user is required to change his or her initial password when he or she first logs on.

ume.logon.security_policy.
password_expire_days

Default value is 99999.

Number of days before password expires.

ume.logon.security_policy.
password_history

Default value is 0

The UME can store the hash value of user passwords. Set this value to prevent users from reusing the same password after their old password expires. Although this value is for practical purposes freely configurable (you can set the value in the trillions), a more useful value might be 5. Use a value that is appropriate for your application.

Note

Set this value to zero (0) if your user data source (such as AS for ABAP) already has a password history checking mechanism.

ume.logon.security_policy.
password_last_change_
date_default

A date in the format MM/DD/YYYY.

Default value is 12/31/9999.

If a user has never changed his or her password using the AS for Java, this date counts as the last date on which the user changed his or her password.

See also: ume.logon.security_policy.

password_expire_days.

ume.logon.security_policy.
password_max_length

Default value is 14.

Maximum password length. This must not be less than the cumulated values of the properties password_mix_case_
required
, password_alpha_numeric
_required
and password_special_
char_required
.

If you are using a SAP Web AS ABAP Engine as user data source, this value should be less than or equal to 8.

ume.logon.security_policy.
password_min_length

Default value is 0.

Minimum password length.

ume.logon.security_policy.
password_mix_case_required

Default value is 0.

Minimum number of upper and lower case letters in passwords.

For example if the property is set to 3, passwords must contain at least 3 lower case letters and at least 3 upper case letters.

ume.logon.security_policy.
password_special_char_required

Default value is 0.

Minimum number of special characters in passwords.

ume.logon.security_policy.
userid_digits

Default value is 0.

Value < 0: Digits are not allowed.

Value = 0: Digits are allowed.

Value > 0: Digits are required.

Minimum number of digits in user logon ID.

ume.logon.security_policy.
userid_in_password_allowed

Default value is TRUE.

Defines whether user ID can be part of password.

ume.logon.security_policy.
userid_lowercase

Default value is 0.

Value < 0: Lowercase characters are forbidden.

Value = 0: Lowercase characters are allowed.

Value > 0: Lowercase characters are required.

Minimum number of lowercase characters in user logon ID.

ume.logon.security_policy.
userid_special_char_required

Default value is 0.

Value < 0: Special characters are forbidden.

Value = 0: Special characters are allowed.

Value > 0: Special characters are required.

Minimum number of special characters in user logon ID.

ume.logon.security_policy.
useridmaxlength

Default value is 20.

Maximum length of user ID.

If you are using a SAP Web AS ABAP Engine as user data source, this value should be less than or equal to 12.

If you are using a database as data source for user data, this value must be less than or equal to 200.

ume.logon.security_policy.
useridminlength

Default value is 5.

Minimum length of user ID.

End of Content Area

No comments:

topics