Hi Experts ,
I am facing this issue with the regex .
So a normal account password can be reset using only the front end check in the password policy and regex is not required in this case .
Alternatively , when service account passwords are being reset they are asking for regex as a requirement
Why is it so ? Why is it developed in such a way that it works without regex for normal account but for service account it requires regex.
Also, if the regex is a requirement can you help me generating the appropriate regex so that the generated password may sync with the AD password policy.
The AD policy is as below:
Not contain the user's account name or parts of the user's full name that exceeds two consecutive characters
Contain characters from three of the following four categories -:
English uppercase characters( A through Z)
English lowercase characters (a through z)
Base 10 digits(0 through 9)
Complexity requirements are enforced when passwords are changed or created.
I was using the regex given by one of the Saviynt experts, regex as below:
The parameters that are used along with the regex are as below:
Maximum Repeated Characters-2
Disallow Last Password-5
Expire After (Days)-90
However, at times the users are still facing issues while checking out the credentials and we need to reset their Privilege ID passwords.
@Manpreet_Kaur Thanks for posting your question. Is this a continuation of the scenario discussed in this forum post?
Also, please note that there is a difference between "maximum consecute repeated characters" and "maximum repeated characters". Which option are you trying to implement?
Hi Nagesh K,
Thanks for your revert.
The solution given in the link is working fine as of now.
However, at certain point of times the Service accounts password generated by vault for credential based used cases comes out to be incorrect when the user tries to login out of SaviyntEIC.
In such scenarios, we need to reset their passwords.
Right now, i am looking into scenarios wherein i can find any specific criteria where the generated password gets incorrect but could not find any criteria as of now.
Is this can be treated as an intermittent issue?