The User Policy regarding password security has been enhanced in the current version of DYNAMIC3i.  The system administrator can define specific parameters as to how the users login attempts and actual password set-up affect their account.  These parameters are defined in the System Flags Maintenance – gb2800 Under the User Policy tab.

The parameters in System Flags Maintenance are global parameters which will affect ALL users defined to DYNAMIC3i within the User Master Maintenance – gb4200.  When setting up a user there are also parameters that can be set which work in conjunction with the global ones defined on the System Flags (discussed below after System Flags User - Policy) .

System Flags - User Policy : (Parameters available to be set)

Failed Login Attempts

Enter the number of failed attempts to log in to the user account before the account is locked.

Password Expiry Days

Enter the number of days the same password can be used for
authentication. If you also set a value for password grace time, the password expires if it is not changed within the grace period, and further connections are rejected. If you do not set a value for password grace time the database will issue a warning but let the user continue to connect indefinitely.

Passwords Remembered

Enter the number of password changes required before the current password can be reused.

Passwords Remembered Time

Enter the number of days before which a password cannot be reused.

Passwords Remembered and Passwords Remembered Time must be set in conjunction with each other. If you enter a value for both of these parameters, then the user cannot reuse a password until the password has been changed the number of times specified for Passwords Remembered during the number of days specified by Passwords Remembered Time. For example, if you specify Passwords Remembered Time to 30 and Passwords Remembered to 10, then user can reuse the password after 30 days if the password has already been changed 10 times. If you enter a value in one of the Password Remembered fields but not the other then the user can never reuse a password.

Password Lock Time

Enter the number of days an account will be locked after the
specified number of consecutive failed login attempts.

Password Grace Time

Enter the number of days after the grace period begins during which a warning is issued and login is allowed. If the password is not changed during the grace period, the password expires.

Password Minimum Length

Enter the minimum length for the password.

Inactive Days

Enter the number of days before an inactive account is disabled.  Should a user not login for this consecutive days time length then the account will automatically disable itself.

Uppercase Character  

Select if password must contain at least one uppercase character.  

Note. Currently the uppercase and lowercase selections are for future use. As of current release if either of these are checked the only verification that is done is that password must contain at least one character.

Lowercase Character

Select if password must contain at least one lowercase character.

Note. Currently the uppercase and lowercase selections are for future use. As of current release if either of these are checked the only verification that is done is that password must contain at least one character.

Number

Check this box if password must contain at least one number.

Punctuation Character

User Maintenance: Security Attributes

Account Status

Displays ‘Open’ or ‘Locked’

Date Locked

If Account Status is locked this will display when the account was locked.

Date Expired

If Account Status is expired (based on the System Flag – gb2800 setting)  this will display when the account was expired.

Lock Account

Check or uncheck this checkbox to instantly lock or unlock an account.

Password Never Expires

If selected the users password will never expire.

Force Password Change

Check this box to force password to be changed the next time the user logs into the SDC software. When this box is checked, the account status will be flagged as expired, expire date will be populated and account status will show as expired, so the next time the user logs into SDC software he/she will be asked to enter a new password.  The user will be required to enter the old password to be entered for security reason.