Skip to main content

 

Druva Documentation

Configure password policy for users and administrators

inSync Cloud Editions: File:/tick.png Elite Plus File:/tick.png Elite File:/cross.png Enterprise File:/tick.png Business

Overview

A password policy is a set of rules that encourages use of strong passwords for ensuring added data security. inSync supports password policies for the users and administrators. You can define a password policy such that:

  • Strong passwords are mandated. A password is strong if it is at least 12 characters long and contains at least one alphabet [a-z, A-Z], one numeric character [0-9], and one special character.
  • Users cannot reuse passwords.
  • The number of login attempts is defined. When this limit is reached, inSync locks the account for an hour.
  • Mandate password change at regular intervals.

Enable password policy for administrators

To enable password policy for administrators

  1. On the inSync Management Console menu bar, click  > Settings.
  2. Click the Password Policy tab.
  3. Under the Password Policy Settings For Administrators area, click Edit. The Password Policy Settings For Administrators window appears.

    PasswordPolicyforAdmins.png

  4. Provide the appropriate information for each field.
    Field Action
    Enable Password Policy If you want to enable password policy for the administrators, select this check box. Additional fields appear.
    Enforce Strong Password

    If you want to enforce strong password policy, select this check box.

    Note: Strong password policy is, by default, enforced in inSync GovCloud environment.

    Cannot reset password to last

    Type the number of previous passwords that the administrator cannot use.

    Note:

    • If you disable the password policy at a later stage, previous passwords history is erased permanently.
    • In inSync GovCloud environment, by default, the administrator cannot reset their password to last 24 passwords.

    Minimum lifetime for password

    (Applicable in inSync GovCloud environment only)

    Type the number of days that you want a password to be used before the administrator can change it.

    Recommended value range is between 1-60 days.

    Recommendation

    Set Minimum lifetime for password age to a value of 1 day. Setting the number of days to 0 allows immediate password changes.

    Max. invalid login attempts Type the maximum number of login attempts.
    Passwords expire after every Type the number of days after which the administrator resets password.
  5. Click Save.

Enable password policy for users

To enable password policy for users

  1. On the inSync Management Console menu bar, click  > Settings.
  2. Click the Password Policy tab.
  3. Under the Password Policy Settings For Users area, click Edit. The Password Policy Settings For Users window appears.

    PasswordPolicyforUsers.png

  4. Provide the appropriate information for each field.
    Field Action
    Enable Password Policy If you want to enable password policy for the users, select this check box. Additional fields appear.
    Enforce Strong Password

    If you want to enforce strong password policy, select this check box.

    Note: Enforce strong password policy is, by default, enabled in inSyncGovCloud environment.

    Cannot reset password to last

    Type the number of previous passwords that the user cannot use.

    Note: In inSyncGovCloud environment, by default, the user cannot reset their password to last 24 passwords.

    Minimum lifetime for password

    (Applicable in inSync GovCloud environment only)

    Type the number of days that you want a password to be used before the user can change it.

    Possible value range is between 1-60 days.

    Recommendation

    Set Minimum lifetime for password age to a value of 1 day. Setting the number of days to 0 allows immediate password changes.

    Max. invalid login attempts Type the maximum number of login attempts.
    Passwords expire after every Type the number of days after which the user resets password.
  5. Click Save.