Details
-
Sub-Task
-
Status: Resolved
-
Major
-
Resolution: Done
-
1.7.10
-
All databases
Description
*** Part of the security enhancements update ***
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire.
Summary of Password Expiration Process
1. New global parameter is entered (via i2b2 Admin module).
2. Password expiration feature is turned on.
3. Passwords for ALL users are now expired.
4. User attempts to sign into i2b2 Web Client; prompted to change password.
5. User enters a new password & successfully signs into the i2b2 Web Client.
6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table.
NEW PARAMETERS
Two new parameters were created as part of the Mandatory password change feature. Both parameters are called PM_EXPIRED_PASSWORD however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. Each parameter has a different function in the password expiration process and is further defined below.
GLOBAL Parameter
What it does:
• Turns the feature on.
• Defines the password change interval.
• Passwords will never expire if this parameter is not added as a global parameter.
Table: PM_GLOBAL_PARAMS
Parameter Name = PM_EXPIRED_PASSWORD
Parameter Value = [number of days the passwords will expire (change interval)]
Parameter Data Type = Text
USER Parameter
What it does:
• Date user’s password will expire
• Parameter is added automatically 1st time password is changed after it expires.
• Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table.
Table: PM_USER_PARAMS
Parameter Name = PM_EXPIRED_PASSWORD
Parameter Value = [date password will expire]
Parameter Data Type = Text
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire.
Summary of Password Expiration Process
1. New global parameter is entered (via i2b2 Admin module).
2. Password expiration feature is turned on.
3. Passwords for ALL users are now expired.
4. User attempts to sign into i2b2 Web Client; prompted to change password.
5. User enters a new password & successfully signs into the i2b2 Web Client.
6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table.
NEW PARAMETERS
Two new parameters were created as part of the Mandatory password change feature. Both parameters are called PM_EXPIRED_PASSWORD however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. Each parameter has a different function in the password expiration process and is further defined below.
GLOBAL Parameter
What it does:
• Turns the feature on.
• Defines the password change interval.
• Passwords will never expire if this parameter is not added as a global parameter.
Table: PM_GLOBAL_PARAMS
Parameter Name = PM_EXPIRED_PASSWORD
Parameter Value = [number of days the passwords will expire (change interval)]
Parameter Data Type = Text
USER Parameter
What it does:
• Date user’s password will expire
• Parameter is added automatically 1st time password is changed after it expires.
• Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table.
Table: PM_USER_PARAMS
Parameter Name = PM_EXPIRED_PASSWORD
Parameter Value = [date password will expire]
Parameter Data Type = Text
Attachments
Issue Links
- is blocked by
-
CORE-288
Enforce complex passwords
-
- Resolved
-
Activity
| Field | Original Value | New Value |
|---|---|---|
| Fix Version/s | 1.7.10 [ 10307 ] |
| Assignee | Janice Donahoe [ jmd86 ] |
| Status | New [ 10000 ] | Open [ 1 ] |
| Status | Open [ 1 ] | In Progress [ 3 ] |
| Status | In Progress [ 3 ] | Ready to Test [ 10001 ] |
| Status | Ready to Test [ 10001 ] | Testing [ 10002 ] |
| Rank | Ranked higher |
| Description |
Enforce change of password regularly.
This task is part of the security enhancements update. |
Enforce change of password regularly.
This task is part of the security enhancements update. The enforcement is done by adding the following parameter to the user. Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days when password expires] Parameter Data Type = N |
| Testing Notes | Tested and it is not working correctly. Password did not expire when expected. | |
| Status | Testing [ 10002 ] | Testing [ 10002 ] |
| Status | Testing [ 10002 ] | Reopened [ 4 ] |
| Status | Reopened [ 4 ] | In Progress [ 3 ] |
| Assignee | Janice Donahoe [ jmd86 ] | Mike Mendis [ mem61 ] |
| Description |
Enforce change of password regularly.
This task is part of the security enhancements update. The enforcement is done by adding the following parameter to the user. Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days when password expires] Parameter Data Type = N |
Enforce change of password regularly.
This task is part of the security enhancements update. The enforcement is done by adding the following parameter to the user. Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date when password expires] Parameter Data Type = D |
| Testing Notes | Tested and it is not working correctly. Password did not expire when expected. |
Tested and it is not working correctly. Password did not expire when expected.
Tried parameter both with date when the password is to expire and number of days when the password is to expire. Neither one worked. |
| Description |
Enforce change of password regularly.
This task is part of the security enhancements update. The enforcement is done by adding the following parameter to the user. Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date when password expires] Parameter Data Type = D |
*** Part of the security enhancements update ***
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire. Summary of Password Expiration Process 1. New global parameter is entered (via i2b2 Admin module). 2. Password expiration feature is turned on. 3. Passwords for ALL users are now expired. 4. User attempts to sign into i2b2 Web Client; prompted to change password. 5. User enters a new password & successfully signs into the i2b2 Web Client. 6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table. NEW PARAMETERS Two new parameters, both are called PM_EXPIRED_PASSWORD, however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. GLOBAL Parameter What it does: • Turns the feature on. • Defines the password change interval. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_GLOBAL_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days the passwords will expire (change interval)] Parameter Data Type = Text USER Parameter What it does: • Date user’s password will expire • Parameter is added automatically 1st time password is changed after it expires. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_USER_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date password will expire] Parameter Data Type = Text |
| Assignee | Mike Mendis [ mem61 ] | Janice Donahoe [ jmd86 ] |
| Status | In Progress [ 3 ] | Ready to Test [ 10001 ] |
| Status | Ready to Test [ 10001 ] | Testing [ 10002 ] |
| Description |
*** Part of the security enhancements update ***
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire. Summary of Password Expiration Process 1. New global parameter is entered (via i2b2 Admin module). 2. Password expiration feature is turned on. 3. Passwords for ALL users are now expired. 4. User attempts to sign into i2b2 Web Client; prompted to change password. 5. User enters a new password & successfully signs into the i2b2 Web Client. 6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table. NEW PARAMETERS Two new parameters, both are called PM_EXPIRED_PASSWORD, however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. GLOBAL Parameter What it does: • Turns the feature on. • Defines the password change interval. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_GLOBAL_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days the passwords will expire (change interval)] Parameter Data Type = Text USER Parameter What it does: • Date user’s password will expire • Parameter is added automatically 1st time password is changed after it expires. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_USER_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date password will expire] Parameter Data Type = Text |
*** Part of the security enhancements update ***
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire. Summary of Password Expiration Process 1. New global parameter is entered (via i2b2 Admin module). 2. Password expiration feature is turned on. 3. Passwords for ALL users are now expired. 4. User attempts to sign into i2b2 Web Client; prompted to change password. 5. User enters a new password & successfully signs into the i2b2 Web Client. 6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table. NEW PARAMETERS Two new parameters were created as part of the Mandatory password change feature. Both parameters are called PM_EXPIRED_PASSWORD however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. Each parameter has a different function in the password expiration process and is further defined below. GLOBAL Parameter What it does: • Turns the feature on. • Defines the password change interval. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_GLOBAL_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days the passwords will expire (change interval)] Parameter Data Type = Text USER Parameter What it does: • Date user’s password will expire • Parameter is added automatically 1st time password is changed after it expires. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_USER_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date password will expire] Parameter Data Type = Text |
| Summary | Require password changes | Mandatory password change |
| Description |
*** Part of the security enhancements update ***
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire. Summary of Password Expiration Process 1. New global parameter is entered (via i2b2 Admin module). 2. Password expiration feature is turned on. 3. Passwords for ALL users are now expired. 4. User attempts to sign into i2b2 Web Client; prompted to change password. 5. User enters a new password & successfully signs into the i2b2 Web Client. 6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table. NEW PARAMETERS Two new parameters were created as part of the Mandatory password change feature. Both parameters are called PM_EXPIRED_PASSWORD however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. Each parameter has a different function in the password expiration process and is further defined below. GLOBAL Parameter What it does: • Turns the feature on. • Defines the password change interval. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_GLOBAL_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days the passwords will expire (change interval)] Parameter Data Type = Text USER Parameter What it does: • Date user’s password will expire • Parameter is added automatically 1st time password is changed after it expires. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_USER_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date password will expire] Parameter Data Type = Text |
*** Part of the security enhancements update ***
The mandatory password change feature requires users to change passwords after a specified interval of time. The i2b2 Administrator controls the number of days allowed before a password must be changed. Two new parameters, 1 global and 1 user, will store the relevant information for passwords to expire. Summary of Password Expiration Process 1. New global parameter is entered (via i2b2 Admin module). 2. Password expiration feature is turned on. 3. Passwords for ALL users are now expired. 4. User attempts to sign into i2b2 Web Client; prompted to change password. 5. User enters a new password & successfully signs into the i2b2 Web Client. 6. Using the value in the global parameter, the system calculates the next expiration date for the user and adds the user parameter with that date to the correct table. NEW PARAMETERS Two new parameters were created as part of the Mandatory password change feature. Both parameters are called PM_EXPIRED_PASSWORD however one is set within PM_GLOBAL_PARAMS and the other within PM_USER_PARAMS. Each parameter has a different function in the password expiration process and is further defined below. GLOBAL Parameter What it does: • Turns the feature on. • Defines the password change interval. • Passwords will never expire if this parameter is not added as a global parameter. Table: PM_GLOBAL_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [number of days the passwords will expire (change interval)] Parameter Data Type = Text USER Parameter What it does: • Date user’s password will expire • Parameter is added automatically 1st time password is changed after it expires. • Passwords will never expire without this setup as a global parameter in the PM_GLOBAL_PARAMS table. Table: PM_USER_PARAMS Parameter Name = PM_EXPIRED_PASSWORD Parameter Value = [date password will expire] Parameter Data Type = Text |
Tested and verified it is is working as designed. This feature will be included in the 1.7.10 release.
| Resolution | Done [ 10001 ] | |
| Status | Testing [ 10002 ] | Resolved [ 5 ] |
| Labels | wikirelease |