Forums » General Discussions » The Water Cooler » Password policy

Password policy

rated by 0 users
This post has 7 Replies | 1 Follower

Top 500 Contributor
Posts 55
Points 885
Reply
chriskelly Posted: Fri, Feb 24 2006 12:03 AM
Is there a way to change the password policy, as far as how many chr the password has to be etc..
  • | Post Points: 20
Top 150 Contributor
Posts 146
Points 1,590
Reply
sbinet replied on Fri, Feb 24 2006 12:35 AM
You may try this in the web.config file (web folder). In fact, I have not try it myself to see if it really works. Please try and tell your results.

<membership userIsOnlineTimeWindow="15" >
            <providers>
                <add
                    name="CommunityServerSqlProvider"            
                    type="CommunityServer.MemberRole.CSMembershipProvider, CommunityServer.MemberRole"
                    connectionStringName="SiteSqlServer"
                    enablePasswordRetrieval="false"
                    enablePasswordReset="true"
                    requiresQuestionAndAnswer="false"
                    requiresUniqueEmail="true"
                    passwordFormat="Hashed"
                    applicationName="dev"
                    description="Stores and retrieves membership data from the local Microsoft SQL Server database"
                    maxInvalidPasswordAttempts = "999"
                    passwordAttemptWindow = "999"
                    minRequiredPasswordLength = "6"
                    minRequiredNonalphanumericCharacters = "0"
                />
            </providers>
        </membership>
No pains, no gains. Pizza + Beer => Cake + Coffee + Music = Paradise
  • | Post Points: 20
Top 10 Contributor
Posts 5,292
Points 49,180
CS Developers
Reply
Ken Robertson replied on Fri, Feb 24 2006 8:37 AM
Could go to the Control Panel, go to Administration, Membership, and Registration Settings.
  • | Post Points: 20
Top 150 Contributor
Posts 140
Points 2,120
Reply
Jasmin Azemovic replied on Fri, Feb 24 2006 8:46 AM

ken:
Could go to the Control Panel, go to Administration, Membership, and Registration Settings.

I see this " (.*) " under Password Regular Expression Pattern. Can You give us some exemple of strong  password policy (min. 8 chars +number and chars+one specila character)

Thx

SQL Server DBA
  • | Post Points: 20
Top 50 Contributor
Posts 354
Points 5,600
Reply
joswalt replied on Fri, Feb 24 2006 10:40 AM

Here is one that requires password to be at least 8 characters and have a digit, lower case, upper case, and special character.

^(?=.*\d)(?=.*[a-z])(?=.*[A-Z])(?=.*\W).{8,}$

 

John Oswalt
http://www.callthehogs.com
DNS Made Easy - professional DNS
Helm 4 WebHosting Control System - Best on the Net
  • | Post Points: 20
Top 150 Contributor
Posts 140
Points 2,120
Reply
Jasmin Azemovic replied on Fri, Feb 24 2006 12:01 PM
joswalt:

Here is one that requires password to be at least 8 characters and have a digit, lower case, upper case, and special character.

^(?=.*\d)(?=.*[a-z])(?=.*[A-Z])(?=.*\W).{8,}$

Thank youSmile [:)]

SQL Server DBA
  • | Post Points: 20
Not Ranked
Posts 1
Points 20
Reply
Eval12345 replied on Fri, Feb 24 2006 1:16 PM
Does this work for you? I was trying to do the same and I am getting the error "
  • Password contains invalid chars ..." while new user registration.
    • | Post Points: 20
    Not Ranked
    Posts 4
    Points 50
    Reply
    CactusJuice replied on Sun, Mar 25 2007 3:53 PM

    I also get this same invalid character error when using the above regex.

    • Filed under:
    • | Post Points: 5
    Page 1 of 1 (8 items) | RSS
    Powered by Community Server (Commercial Edition), by Telligent Systems

    Copyright© 2008 Telligent Systems Inc. All rights reserved
    CommunityServer.com  •  Telligent.com