Symantec Access Management

  • Private Community

  • 1.  Password Policy dialog execution order in CA Siteminder

    Posted Apr 25, 2017 06:46 AM

    Hello Experts,

     

    I am trying to set up a Password policy with the rule in Composition tab that it should allow the punctuation characters in the password and in the Regular Expression tab, I write a regular expression that allow only "!",";" and "-" (for example, along with Upper-case and lower-case letters and numbers). If the user enter a password as Test!.,123, will the policy accept this password? What is the condition (AND/OR) implied for the rules mentioned in various tabs of Password policy?



  • 2.  Re: Password Policy dialog execution order in CA Siteminder



  • 3.  Re: Password Policy dialog execution order in CA Siteminder
    Best Answer

    Posted Apr 25, 2017 06:12 PM

    The password policy will take the condition as AND.

    So, if the condition 1 says Allow and condition 2 says Deny ..the effective policy is DENY (more restrictive)

     

    So , in this case, as you have allowed punctuation characters , following characters are allowed as per this config :

    Punctuation:                   "!'(),.:;?@#%&*-_{}[]/\

    However, as per your regular expression you have allowed only : !",";" and "-"

    So effectively, the policy will allow only the later set of characters :
    !",";" and "-"

    Hope this clears your doubt.

    Regards,
    Ujwol