Derdack

Targeted Alert Notifications – Anywhere Actions

Derdack
  • Use Cases
    • Overview
    • Enterprise IT Alerting
    • IT Managed Services
    • Mobile Alerting in Manufacuring
    • Critical Operations Alerting in Banking & Financial
    • Field Service Dispatching in Energy & Utilities
    • Use Cases in other Industries
  • Products
    • Overview
    • Enterprise Alert®
      • Overview
      • Alert Notifications
      • On-call Duty Scheduling
      • Collaboration
      • Anywhere Remediation
      • Incident Mgmt. App
      • Integrations
      • Technical Support
      • Online Knowledge Base
      • Derdack FAQ
    • SIGNL4® Cloud
    • References & More
  • How to Buy
    • Overview
    • Pricing and Quotes
    • Find a local Partner
    • Azure Marketplace
  • About Derdack
    • About
    • Careers
    • Partner Program
    • Strategic Partners
    • Derdack Podcast
    • Contact Derdack
  • News & Blog
  • Request Demo
    • de de
  • News & Blog

    • Home
    • News & Blog
    • Technical
    • Adapt the Password Complexity Policy in Enterprise Alert

    Adapt the Password Complexity Policy in Enterprise Alert

    • July 19, 2016
    • Technical
    Adapt the Password Complexity Policy in Enterprise Alert

    If you are not using Windows authentication, your Enterprise Alert username and password are your key to enter the Enterprise Alert Web portal as well as the mobile app.

    Passwords can be more or less complex and Enterprise Alert allows you to define the required password complexity. This means that by default a password containing at least six characters with one uppercase, one lowercase and one numeric character is required when a new user is created or the password of an existing user is modified.

    If, however, this password policy does not fit your requirements or you need to enable the password policy for your upgraded installation of Enterprise Alert, options are available for customizing or enabling the password policy.

    There are essentially four settings in the “KeyValueCollections” table of the “EnterpriseAlert” database that govern the behavior of the password policy, namely “PWComplexityRuleActivated”, “PWComplexityRuleRegex”, “PWComplexityRuleUserDescriptionKeyand” and “PWComplexityRuleUserDescriptionTooltipKey”. A description of these settings is provided below:

    Setting
    Description
    PWComplexityRuleActivated
    Whether or not the password policy is active or not.
    Set 1 for active and 0 to disable the functionality.
    PWComplexityRuleRegex
    The regular expression that enforces the password policy
    Please refer to resources in the Internet for more information about regular expressions.
    PWComplexityRuleUserDescriptionKey
    The text that is displayed if the entered password does not comply with the regular expression specified forPWComplexityRuleRegex.
    PWComplexityRuleUserDescriptionTooltipKey
    The tooltip that is displayed if the user moves their mouse of the “Password Profile” or “Confirm Password Profile” fields on the user details page

    Activating or deactivating the Policy

    In order to enable or disable the password policy, you will need to complete the following steps:
    1. Open SQL Server Management Studio and log onto the SQL Server instance where the Enterprise Alert database “EnterpriseAlert” has been installed.
    2. Select “New Query” and select the “EnterpriseAlert” database.
    3. Execute the following query if you would like to enable the password policy:
      — Enable Password Policy
      UPDATE KeyValueCollection
      SET Value = ‘1’
      WHERE Component = ‘MMEA’ AND [Key] = ‘PWComplexityRuleActivated’
      OR execute the following query to disable the password policy:
      — Disable Password Policy
      UPDATE KeyValueCollection
      SET Value = ‘0’
      WHERE Component = ‘MMEA’ AND [Key] = ‘PWComplexityRuleActivated’
    4. Restart Internet Information Services (IIS) by doing an iisreset in the commant prompt

    Customizing the Complexity Policy

    If you would like to customize the password policy, you can do so by modifying the “PWComplexityRuleRegex”, “PWComplexityRuleUserDescriptionKey” and “PWComplexityRuleUserDescriptionTooltipKey” settings.

    PWComplexityRuleRegex allows you to change the policy that applies to passwords, while “PWComplexityRuleUserDescriptionKey” and “PWComplexityRuleUserDescriptionTooltipKey” provide the corresponding text that appears in the Enterprise Alert portal if the user enters in an invalid password.

    The regular expression can for example be changed to ^(?=.*d)(?=.*[a-z])(?=.*[A-Z]).{8,255}$ to ensure that only passwords with a minimum length of eight characters can be entered. To apply this regular expression, execute the following query:

    — Update Regular Expression
    UPDATE KeyValueCollection
    SET Value = ‘^(?=.*d)(?=.*[a-z])(?=.*[A-Z]).{8,255}$’
    WHERE Component = ‘MMEA’ AND [Key] = ‘PWComplexityRuleRegex’
    To modify the text for invalid passwords, execute the following query:
    — Update password policy text
    UPDATE KeyValueCollection
    SET Value = ‘The password strength is too weak. Please provide at least 8 characters, 1 digit, 1 uppercase and 1 lowercase character in the password.’
    WHERE Component = ‘MMEA’ AND ([Key] = ‘PWComplexityRuleUserDescriptionKey’ OR [Key] =’PWComplexityRuleUserDescriptionTooltipKey’)

    Once you completed your changes, restart IIS (iisreset) for the changes to take effect.

    Tagged

    adaptcomplexitypasswordpolicy

    Share

    Related Posts

    Enterprise Alert 9.4.1 comes with fixes and the revised version of the sentinel connector app

    February 1, 2023

    Critical System Alerts via SIGNL4

    December 29, 2022

    Enterprise Alert 9.4 Update introduces Remote Actions for hybrid scenarios and proxy support for MS Teams

    October 25, 2022

    Upgrade your shopfloor alerting with Derdack

    September 8, 2022

    About

    DERDACK products combine automated alert notification workflows, 24/7 duty scheduling, ad-hoc collaboration and anywhere IT troubleshooting – reducing unexpected IT downtimes at large enterprises and organizations by 60%.

    Most popular

    • Derdack Company Take your ITIL incident management to the next level with Enterprise Alert
    • Mobile alert notifications for HP Service Manager (HPSM)
    • How to forward alerts to Microsoft Teams
    • Oncall Scheduling On-Call Schedule Management with Auto-Rotation
    • checking-mobile Enhancing SCOM alert notifications
    • Announcing Enterprise Alert 2019
    • Even, Alert, Incident, Notification Definition of Event, Alert, Incident and Notification
    • who-is-on-call-sharepoint Add a live “Who is On-Call” Dashboard into Sharepoint and other Tools

    Categories

    • Business (37)
    • Cloud Services (5)
    • Consultancy (1)
    • Customers (18)
    • Energy & Utilities (7)
    • Events (23)
    • Financial & Banking (4)
    • IT Ops (19)
    • Manufacturing (8)
    • News (48)
    • Schools (1)
    • Software (9)
    • Staffing (1)
    • Support (4)
    • Technical (141)
    • Transport & Logistics (5)

    Tags

    alert alert notifications Anywhere Resolution Anywhere Response Azure azure BMC customer reference Database derdack enterprise alert Enterprise Alert Enterprise Alert 2016 Enterprise Alert 2019 Gartner HPE HPE ITSM incident Incident Management Incident resolution incident response Industrie 4.0 Integration IT Alerting IT Operations Maintenance microsoft mobile Mobile App monitoring OMS on-call on-call schedule Operational Alerting rapid response release Remote Action REST API SCOM security SolarWinds NPM System Center update User Group voice

    Follow us

    • Twitter
    • Facebook
    • LinkedIn
    • XING
    • YouTube
    • Vimeo
    • Home
    • News & Blog
    • Technical
    • Adapt the Password Complexity Policy in Enterprise Alert

    CONTACT US:
    Intl: +49 331 29878-0

    US: +1 (202) 470-0885
    UK: +44 (20) 88167095
    CH: +41 (31) 5391990

    CONTACT VIA EMAIL:
    info@derdack.com

    OFFICES:
    US & Europe

    NEWSLETTER:
    Sign up here

    CAREER:
    Latest job offers

    EVENTS

    • No Upcoming Events
    • Who we help
    • Products
    • How to Buy
    • About Derdack
    • News & Blog
    • Free Trial
    • Twitter
    • LinkedIn
    • XING
    • YouTube
    • Vimeo

     © 2022 Derdack – Imprint, Privacy policy

    • Use Cases
      • Overview
      • Enterprise IT Alerting
      • IT Managed Services
      • Mobile Alerting in Manufacuring
      • Critical Operations Alerting in Banking & Financial
      • Field Service Dispatching in Energy & Utilities
      • Use Cases in other Industries
    • Products
      • Overview
      • Enterprise Alert®
        • Overview
        • Alert Notifications
        • On-call Duty Scheduling
        • Collaboration
        • Anywhere Remediation
        • Incident Mgmt. App
        • Integrations
        • Technical Support
        • Online Knowledge Base
        • Derdack FAQ
      • SIGNL4® Cloud
      • References & More
    • How to Buy
      • Overview
      • Pricing and Quotes
      • Find a local Partner
      • Azure Marketplace
    • About Derdack
      • About
      • Careers
      • Partner Program
      • Strategic Partners
      • Derdack Podcast
      • Contact Derdack
    • News & Blog
    • Request Demo
    Manage Cookie Consent
    We use cookies to optimize our website and our service.
    Functional Always active
    The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
    Preferences
    The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
    Statistics
    The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
    Marketing
    The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
    Manage options Manage services Manage vendors Read more about these purposes
    View preferences
    {title} {title} {title}