A password policy for privileged accounts is a set of rules and restrictions that determine permissible privileged account passwords. For example, you can configure the policy to mandate passwords that are at least eight characters long and contain a number and a letter. The password policies also determine an interval at which SAM automatically creates a password for the account.
Note: SAM comes with a predefined password policy that you can use. We recommend that you define password policies that are appropriate for each of your endpoints and adhere to your security requirements.
Follow these steps:
The Create Password Policy: Configure Standard Search Screen page appears.
The list of password policies appears.
The Create Password Policy task page appears. If you created the password policy from an existing object, the dialog fields are prepopulated with the values from the existing object.
By default, new password policies are enabled. If the policy you are creating is not approved yet, you can choose to clear this checkbox and leave the policy disabled.
This is a regular interval at which CA ControlMinder Enterprise Management changes passwords automatically. By default, the expiration interval is disabled (set to zero).
For example, if you create a password policy for a service account, you can specify that CA ControlMinder Enterprise Management can change the password of the account only between 10:00 p.m. and 11:59 p.m. (22:00–23:59) on Sundays.
Note: You can export the password change failure in a CSV file for review from the Password Change Failures screen.
CA ControlMinder Enterprise Management creates the password policy.
Copyright © 2013 CA Technologies.
All rights reserved.
|
|