Chapter 11-Users, Connections and Notes

Defining Password Aging

The duration of password validity is determined by the value of the PASSWORD_EXPIRATION_DAYS System Flag.

Passwords can be set to be valid for durations of between 0 and 90 days.

If the System Flag is set to 0, user passwords do not expire. The System Flag cannot be set to 0 when the RMX is in Enhanced Security Mode.

In Enhanced Security Mode, the minimum duration can be set to 7 days and the default duration is 60 days.

The display of a warning to the user of the number of days until password expiration is determined by the value of the PASSWORD_EXPIRATION_WARNING_DAYS System Flag.

Possible number of days to display expiry warnings is between 0 and 14.

If the System Flag is set to 0, password expiry warnings are not displayed. The System Flag cannot be set to 0 when the RMX is in Enhanced Security Mode.

In Enhanced Security Mode, the earliest warning can be displayed 14 days before passwords are due to expire and the latest warning can be displayed 7 days before passwords are due to expire (default setting).

If a user attempts to log in after his/her password has expired, an error is displayed: User must change password.

Defining Password Change Frequency

The frequency with which a user can change a password is determined by the value of the MIN_PWD_CHANGE_FREQUENCY_IN_DAYS System Flag. The value of the flag is the number of days that users must retain a password.

Possible retention period is between 0 and 7 days. In Enhanced Security Mode the retention period is between 1 (default) and 7.

If the System Flag is set to 0, users do not have to change their passwords. The System Flag cannot be set to 0 when the RMX is in Enhanced Security Mode.

If a user attempts to change a password within the time period specified by this flag, an error, Password change is not allowed before defined min time has passed, is displayed.

11-14

Page 304
Image 304
Polycom 2000/4000 manual Defining Password Aging, Defining Password Change Frequency, 11-14