Password use and validation are the most fundamental mechanisms for protecting ACIDs from unauthorized use. CA Top Secret requires that all ACIDs be password protected by default. A security administrator assigns the first password. The user associated with the ACID can then either change the password immediately, or later when it expires.
Password assignment is controlled by certain CA Top Secret control option values. These values are set and stored within CA Top Secret; however, they can be changed to fit your site’s security requirements at any time.
Password assignment can be controlled in these ways:
The following rules demonstrate some of the options you can apply to all users of CA Top Secret security:
A password expiration interval is the number of days before CA Top Secret forces a user to change his password.
To prevent unauthorized system entry by password guessers, CA Top Secret recognizes a password violation threshold that is enforced system-wide. Once this threshold is exceeded, CA Top Secret automatically suspends the ACID.
Random password generation is a feature that lets CA Top Secret automatically generate a random set of characters for a password. A security administrator can instruct CA Top Secret to generate a random password for a user whose password has expired, or the user himself can instruct CA Top Secret to automatically generate a password.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|