For passwords to be strong, security best practices mandate that passwords should not contain or match the user name. The default password policy enables this option. While this option may seem useful when setting the temporary password for new users, it is a good practice to clear this password policy selection. Clearing this option prevents users from using this kind of weak password.
Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |