Our auditors are asking for documentation regarding the password complexity for tenant members to access the dashboard, but I cant find this anywhere. Can someone please point me to this?
Hi @ben.stjohnston and thank you for your question!
We use the same policy for the tenant accounts as described here on the Password Strength doc page.
I hope this answers your question!
Teodor.
Hi @teodor.andrei,
The page you reference details the configuration you can apply to a database connection. Could you please clarify the actual configuration used for tenant access? i.e. is it the strongest that can be configured?
Hi @ben.stjohnston!
Yes, as I said, the tenant accounts use the same configuration as described in the documentation for the database connection. Specifically, it’s using this:
- Excellent: at least 10 characters including at least 3 of the following 4 types of characters: a lower-case letter, an upper-case letter, a number, a special character (such as
!@#$%^&*). Not more than 2 identical characters in a row (for example,111is not allowed).
You cannot further customize it, unfortunately.
Kind regards,
Teodor.
1 Like
Hi again @ben.stjohnston !
I have some new information for your question. Apparently today the passwords for tenant accounts use even higher complexity so that the accounts are as secure as possible. The requirements for passwords on tenants are all 4 of these at the same time:
- At least 12 charactersAt least 12 characters: Pass.
- Lower case letters (a-z)Lower case letters (a-z): Pass.
- Upper case letters (A-Z)Upper case letters (A-Z): Pass.
- Numbers (0-9)
Apologies for any confusion I might have created.
Kind regards,
Teodor.