Activator user administration > Manage password policies of transport users

Manage password policies of transport users

You can specify password policies for users of FTP, SFTP, and Web Services embedded servers. This includes users who connect to servers that are used for both back-end application and trading partner exchanges. You can assign a password policy when a user account is being set up or changed.

A default password policy is in effect globally for all transport users. You can override the default policy by adding one or more user-defined policies and assigning policies to specific users.

Password policies are not transport-specific. FTP, SFTP and Web Services users can be assigned to the same policies.

The following topics describe setting up and assigning password policies:

Add, change transport user password policy
Transport users password policy settings
Assign password policy to transport user

Add, change transport user password policy

Use this procedure to add or change a password policy for users of FTP, SFTP and Web Services embedded servers.

Get started

Select System management on the toolbar to open the System management page.
Click the task Manage password policies of transport users. This opens a page of the same name.

Add a policy

Click Add a new password policy to create a policy. See Transport users password policy settings for descriptions of the fields to complete.
Click Save changes to add the policy.

Change a policy

Click the name of a policy to open it.
Change fields and click Save changes. See Transport users password policy settings for descriptions of the fields.
Select an assigned users tab and click a user’s name to assign a different password policy.

Delete a policy

Before deleting a policy, determine whether to reassign its users to another policy. If you do not reassign users, any users assigned to a deleted policy are reassigned to the default policy.
Click Delete and click OK to confirm you want to delete a password policy. You cannot delete the default policy.

Transport users password policy settings

Use the following fields to set password policies for users of FTP, SFTP and Web Services embedded servers.

When changing a policy, select a user tab and click a user's name to assign a different policy to a user.

Policy name – The policy name. You cannot change the name of the default policy.
Policy description – An optional description of the password policy.
Minimum password length – The minimum number of characters allowed for user passwords.
Minimum change count before password can be reused – The number of times a user must change a password before a previous password can be re-used. If a value of 0 is used, the minimum change count for password re-use is disabled. This means a minimum change count does not affect password re-use.
Elapsed days before password can be reused –The number of days that must pass before a user can re-use a password. If a value of 0 is used, elapsed days before a password can be re-used is disabled. This means a password can be re-used immediately if the minimum change count also is 0.
Days password remains valid before it must be reset – The number of days a password is valid before it must be changed. If a value of 0 is used, a password remains valid forever.
Passwords must not contain the user ID – By default, this option is selected. Forces users to enter passwords that do not contain the user ID string.
Passwords must have at least one upper-case letter and one lower-case letter – Forces users to have at least one upper-case letter and one lower-case letter in passwords. With or without this selected, passwords are case sensitive.
Passwords must have at least one number (0 to 9) – Forces users to include at least one number in passwords.
Passwords must have at least one special character from the set – Forces users to have at least one special character in their passwords. Type the permitted characters in the special characters allowed field. For example, you can allow characters such as: `~!@#$%^&*()-=[]{}\|;:",.<>?.

Assign password policy to transport user

Use one of the following methods to assign a password policy for FTP, SFTP and Web Services users.

When adding a pickup or delivery exchange, and you are setting up a new user account, you can select the password policy for the user.
When changing a transport user you can assign a different password policy.