Enforce current password policy compliance requirements on login
Reduce the risk of brute force account login by enforcing current password policy compliance requirements on login.
Help prevent interactive users from logging in to the instance with passwords that don’t meet current administrator requirements using the glide.apply.password_policy.on_login system property.
Set the glide.apply.password_policy.on_login system property to true to enforce current password policy compliance requirements. If this property doesn’t exist on the System Properties [sys_properties] table, the default value is false.
More information
| Attribute | Description |
|---|---|
| Technical configuration name | glide.apply.password_policy.on_login |
| Plugin applicability | None |
| Security risk | Interactive users may continue to log in to the instance with passwords that don’t meet current administrator requirements. This may mean that the users have weak passwords that don’t meet up-to-date security requirements, potentially leading to an increased risk of brute-force account logins by a malicious user. |
| Common Vulnerability Scoring System (CVSS) score | 4.4 |
| Common Vulnerability Scoring System (CVSS) rating | Medium |
| Functional impact | If the existing passwords aren’t in compliance with your current password policy, enabling this property forces users to change the passwords during their next login. This property is automatically set to
false. Setting the value to true enforces a password policy during login. 注: Enabling this property might force a significant number of users who aren’t in compliance with
the new password policy to change their passwords. |
| Dependencies and prerequisites | None |
| Data type | Boolean |
| Base system value | false |
| Fallback value | false |
| Recommended value | true |
To learn more about adding or creating a system property, see Add a system property.