AX2586
Enabling password rules
By default, Axiom Capital Planning enforces a basic set of password rules. These rules apply to users assigned to Axiom Prompt authentication.
The built-in password rules are as follows:
- Must be at least 8 characters long
- Must contain at least 1 upper-case letter and at least 1 lower-case letter
- Must contain at least 1 non-alphabetic character (a number or a symbol)
The password rules are only enforced when creating new passwords. If any existing passwords do not meet these rules, those passwords will continue to be valid.
When the password rules are enabled, a Generate Password link is available on the Set Password dialog so that you can generate a random password that meets these rules. (This feature is not available if the password rules are changed from the built-in rules; see the note below.)
Password rules are enabled or disabled by using the system configuration property EnablePasswordPolicy. This setting is True by default. If you do not want to apply these rules, you can disable the setting by changing it to False, which means that any password is considered valid. You can do this by using the Software Manager, or by using a Save Type 4 report that has been set up to modify the system configuration table.
NOTE: The system configuration settings contain two additional options related to EnablePasswordPolicy. PasswordRegularExpression defines the password rules, and InvalidPasswordMessage defines the error message displayed if a new password does not meet the rules. Axiom Capital Planning does not currently provide a methodology for clients to change the password rules from the built-in rules, therefore, these two options should not be changed from their default settings. If you have a need to use different password rules, please contact Axiom Capital Planning support for assistance.
