Click HERE to see how Saviynt Intelligence is transforming the industry. |
03/14/2023 12:00 PM
Hello,
I want to create a password policy that can only allow using alphanumeric characters except character a or A.
How should I configure regex to let it check no a or A typed?
I tried this but does not work: [b-z,B-Z,0-9]
Could you please help?
03/14/2023 01:38 PM
03/14/2023 01:59 PM
03/14/2023 01:55 PM
What the application you are trying to apply password policy? When you say didn't work what is the behaviour you are seeing?
03/14/2023 02:03 PM
Hi SK, see above post with my screen shots. Hope you guys can help with a correct password policy that only allow alphanumeric characters but no A or a allowed.
another regex allow A or a but it must not be first character. if you could provide a regex for each requirement, it would be great.
03/14/2023 04:34 PM
1. If you are manually setting the password from UI then it follows the policy mentioned in policy attributes not the regex. Regex will come to place for auto generation/ random password generation.
2. You can use policy like this ^[^Aa][(?=.*\d)(?=.*[a-z\])(?=.*[A-Z\])(?=.*[a-zA-Z\])]{7,8}$
03/14/2023 04:40 PM
Hello SK,
Thanks for your explanation. How can I enable auto password generation for a target endpoint? I have applied the password policy to endpoint, when I submit a new account request, I cannot where the new password generated and how to use it? I used JarConnector which looks can only receive manual password change request via ${arsTasks.getPassword()}. However, createAccount should also have a new password applied, but I cannot find it anywhere via CreateAccountJSON.
Thanks,
03/14/2023 04:51 PM
In CreateAccountJSON you can use ${password} and map it to target password field. This variable will generate the password based on regex of the password policy attached to application
03/15/2023 06:19 AM - edited 03/15/2023 06:23 AM
Hello Saathvik,
I have tried ${password} in CreateAccountJSON, it does not work. Can you help please?
The regex you gave me does not work either. if I put it in the policy. the manual password change will not work because no password satisfy the rule. if regex only apply to auto password generation, why does it block my manual change password request?
03/15/2023 07:15 AM
What is the error you are seeing with ${password}?
In policy can you change Minimum Alpha Numeric Characters value from 8 to 7 and see if that fixes it
03/15/2023 07:54 AM
Hi Saathvik,
once I use it in CreateAccountJSON, all parameters in CreateAccountJSON will not be converted to its actual value. this setting will affect all other parameters, I don't know why:
"acct_pwd":"${password}"
For the manual password change, once I remove the setting from regex filed, it will work, otherwise it will not work. that means regex setting affect manual password change.
04/12/2023 05:07 PM
Hi @IAMI ,
1. Can you share a screenshot of the password policy that you are using?
2. Can you also share the entire JSON that you are using ? Also, what is the type of connector you are using?
Thanks.