Setting up passwords and their policies

An administrator configures the BMC Helix Innovation Suite access control, password, and security. Password policies are enforced to make sure the passwords are validated and encrypted. The password policy guarantees that the users set a password and change it according to the policy. 

You can configure the password policy to restrict the use of certain characters in the password and set a password expiration schedule. You can set a policy to enable automatic password unlocking in case of multiple failed attempts by a user.

Related topic

Access-control-overview

Important

When BMC Helix Single Sign-On is enabled in your environment and you change the user password by using Application > AR System Administration > Change password console, a SaaS user is logged out of the current session in the browser.

However, an on-premises user is logged out from all sessions.

The following topics describe the different aspects of setting up passwords and password policies:

Action

Reference

Learn to set up password validation and enforce password policies by leveraging the user's operating system.

Learn to enforce a password policy to which the users are required to adhere by using the User Password Management Configuration form.

Learn to set up a policy to require users to change their passwords. 

Learn to configure the password format and set restrictions according to HIPAA rules. Add other restrictions as required, and schedule a password expiration to force users to change passwords after a specific duration.

Learn to configure the number of failed password attempts that are acceptable and the time duration after wich the account will be auto-unlocked for further attempts.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*