Restricting the use of certain characters in passwords
On UNIX, users must enter two backslashes (\ ) in front of any dollar signs ($) in their passwords. For example, if a user's password is testBMC$12, the user must enter it as follows: testBMC \ \ $12.
To avoid login problems, restrict the use of $ in passwords.
Setting up password restrictions
- From the BMC Remedy AR System Administration Console, click System > General > Password Management Configuration. The User Password Management Configuration form appears.
- To disable the default HIPAA character restrictions, select the Disable Default Character Restrictions check box.
- This check box disables the default HIPAA character restrictions regarding non-alphanumeric characters and case-sensitivity. If the check box is selected, users can enter any characters in the Password field, except for characters that are restricted according to what you enter in the Restrictions Qualifier field.
- Length restrictions are still enforced, but you change them in the Minimum Length field as described in the following step.
- Complete the following fields in the Restrictions section.
- Minimum Length — Sets the minimum length the user must enter when changing a password. You can enter a length of 1 through 30; the default is 8.
- Restrictions Qualifier — Specifies restrictions in addition to the default HIPAA restrictions. For example, to force users to include a numeric character in their password, enter:
'New Password' LIKE "%[0-9]%"
If the default HIPAA restrictions are enabled, you can add more restrictive qualifications, but your restrictions cannot contradict the default restrictions. If you want less restrictive rules, disable the default HIPAA restrictions. In summary, you can enforce restrictions in any of the following ways:
- Use the default restrictions — Do not enter a qualification in the Restrictions Qualifier field.
- Use the default restrictions, but refine them further — Simply enter a qualification in the Restrictions Qualifier field.
- Replace the default restrictions with your own custom restrictions — Select the Disable Default Character Restrictions check box and enter a qualification in the Restrictions Qualifier field.
- Remove the default restrictions, and allow users to enter any combination of characters — Select the Disable Default Character Restrictions check box and do not enter a qualification in the Restrictions Qualifier field. See Restriction qualifications scenarios.
- Failure Message — Specifies the message if a password is entered that does not qualify against the restrictions set.
4. Click Save.