Enable a deny-list password validation check
Manage the deny-list passwords in the Excluded Password table.
Use the glide.enable.blacklist_password property to monitor deny-list passwords. When the property is set to true, the user's password is checked against a specific list of deny-listed passwords. This denial prevents users from using a password from a set of breached passwords. You can maintain the list by inserting passwords into the Excluded Password [blacklisted_password] table. ServiceNow provides a small, medium, or large password list that can be inserted to the Excluded Password table through the UI page found at . ServiceNow installs the small list of 5,000 passwords to new instances.
Ensure that the glide.enable.blacklist_password system property is set to true and that the Excluded Password [blacklisted_password] table contains a minimum of 5,000 records.
More information
| Attribute | Description |
|---|---|
| Configuration name |
|
| Configuration type |
|
| Data type |
|
| Recommended value |
|
| Default value |
|
| Fallback Value |
|
| Category | Authentication |
| Security risk |
|
| Functional Impact | Some users may have difficulty selecting a password. |
| Dependencies and prerequisites | None |
| References | Exclude passwords through password policies on your instance |