You can also enforce whether the offline password must be different from the online ArcotID PKI password. The EnforceDifferentOfflinePasword ArcotID PKI attribute specifies this feature.
The following table lists the values supported by the EnforceDifferentOfflinePassword attribute:
|
Value |
Description |
|---|---|
|
True |
Specify this value if you want the offline password to be different from the online ArcotID PKI password. |
|
False |
Specify this value if you do not want to restrict the offline password to be different from the online ArcotID PKI password. Note: This value is selected by default. |
To configure the offline password format, you need to use the OfflinePasswordProfile ArcotID PKI attribute. The effectiveness of password is determined by a combination of the length of the password, and number of numerals and special characters in it.
The following table lists the options that the OfflinePasswordProfile ArcotID PKI attribute provides to specify the offline ArcotID PKI password characteristics:
|
Format |
Default Value |
Description |
|---|---|---|
|
minlen |
4 |
Specifies the minimum length of the password. |
|
maxlen |
8 |
Specifies the maximum length of the password. |
|
minsplchars |
0 |
Specifies the minimum number of special characters required in the password. Note: All special characters excluding ASCII characters (0-31) are supported. |
|
minnumchars |
0 |
Specifies the minimum number of numerals required in the password. |
You have to specify the password characteristics in a string format as shown below:
"minlen=<n>;maxlen=<n>;minsplchars=<n>;minnumericchars=<n>"
Note: If you specify the format names incorrectly or provide non-numeric values, then the default values are used.
|
Copyright © 2013 CA.
All rights reserved.
|
|