Security Policy

Property	Value	Description
ume.logon.security_policy. auto_unlock_time	Default value is 60. 0 = Deactivate this option. The user remains locked.	Number of minutes before a user ID is unlocked after a series of failed logon attempts.
ume.logon.security_policy. cert_logon_required	Default value is FALSE.	Defines whether certificate logon is required.
ume.logon.security_policy. lock_after_invalid_attempts	Default value is 6. Possible values: 0 to 9999 0 = Infinite number of failed logon attempts allowed.	Number of failed logon attempts before user is locked.
ume.logon.security_policy. log_client_hostaddress		See Security Audit.
ume.logon.security_policy. log_client_hostname		See Security Audit.
ume.logon.security_policy. oldpass_in_newpass_allowed	Default value is TRUE.	Defines whether old password can be part of new password.
ume.logon.security_policy. password_alpha_numeric_required	Default value is 0.	Minimum number of alphabetic and numeric characters in passwords. For example if the property is set to 3, passwords must contain at least 3 letters and at least 3 numbers.
ume.logon.security_policy. password_change_allowed	Default value is TRUE. TRUE = Users can change their passwords. Administrators can reset users’ passwords. (Default value) FALSE = Users cannot change their passwords. If an administrator resets a user’s password, this has no effect.
ume.logon.security_policy. password_change_required	Default value is TRUE.	Determines if a newly created user is required to change his or her initial password when he or she first logs on.
ume.logon.security_policy. password_expire_days	Default value is 99999.	Number of days before password expires.
ume.logon.security_policy. password_history	Default value is 0	The UME can store the hash value of user passwords. Set this value to prevent users from reusing the same password after their old password expires. Although this value is for practical purposes freely configurable (you can set the value in the trillions), a more useful value might be 5. Use a value that is appropriate for your application. Set this value to zero (0) if your user data source (such as AS for ABAP) already has a password history checking mechanism.
ume.logon.security_policy. password_last_change_ date_default	A date in the format MM/DD/YYYY. Default value is 12/31/9999.	If a user has never changed his or her password using the AS for Java, this date counts as the last date on which the user changed his or her password. See also: ume.logon.security_policy. password_expire_days.
ume.logon.security_policy. password_max_length	Default value is 14.	Maximum password length. This must not be less than the cumulated values of the properties password_mix_case_ required, password_alpha_numeric _required and password_special_ char_required. If you are using a SAP Web AS ABAP Engine as user data source, this value should be less than or equal to 8.
ume.logon.security_policy. password_min_length	Default value is 0.	Minimum password length.
ume.logon.security_policy. password_mix_case_required	Default value is 0.	Minimum number of upper and lower case letters in passwords. For example if the property is set to 3, passwords must contain at least 3 lower case letters and at least 3 upper case letters.
ume.logon.security_policy. password_special_char_required	Default value is 0.	Minimum number of special characters in passwords.
ume.logon.security_policy. userid_digits	Default value is 0. Value < 0: Digits are not allowed. Value = 0: Digits are allowed. Value > 0: Digits are required.	Minimum number of digits in user logon ID.
ume.logon.security_policy. userid_in_password_allowed	Default value is TRUE.	Defines whether user ID can be part of password.
ume.logon.security_policy. userid_lowercase	Default value is 0. Value < 0: Lowercase characters are forbidden. Value = 0: Lowercase characters are allowed. Value > 0: Lowercase characters are required.	Minimum number of lowercase characters in user logon ID.
ume.logon.security_policy. userid_special_char_required	Default value is 0. Value < 0: Special characters are forbidden. Value = 0: Special characters are allowed. Value > 0: Special characters are required.	Minimum number of special characters in user logon ID.
ume.logon.security_policy. useridmaxlength	Default value is 20.	Maximum length of user ID. If you are using a SAP Web AS ABAP Engine as user data source, this value should be less than or equal to 12. If you are using a database as data source for user data, this value must be less than or equal to 200.
ume.logon.security_policy. useridminlength	Default value is 5.	Minimum length of user ID.