User Tools

Site Tools


password_policies_login_protection_strong_authentication

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
password_policies_login_protection_strong_authentication [2019/03/01 14:03]
lucy
password_policies_login_protection_strong_authentication [2019/07/03 11:26] (current)
lucy
Line 1: Line 1:
 ===== Password Policy ===== ===== Password Policy =====
  
-A password policy is a set of rules designed to force users to employ strong passwords and use them properly. In LUCY > 3.1 you can configure the password policy under the advanced settings:+A password policy is a set of rules designed to force users to employ strong passwords and use them properly. In LUCY you can configure the password policy under the advanced settings: 
 + 
 +{{:​set_psw_2.png?​600|}}
  
-{{ pwd_policy.png?​600 }} 
  
 You can define the following settings: You can define the following settings:
Line 19: Line 20:
 If you enable the security image within the login page the user will have to enter a captcha text together with his login which will protect the login from automated login attempts (see https://​www.owasp.org/​index.php/​Blocking_Brute_Force_Attacks). ​ If you enable the security image within the login page the user will have to enter a captcha text together with his login which will protect the login from automated login attempts (see https://​www.owasp.org/​index.php/​Blocking_Brute_Force_Attacks). ​
  
-{{ login_protection_captcha.png?600 }}+{{:shw_psw_3.png?600|}}
  
  
Line 26: Line 27:
 Certificate-based authentication is the use of a Digital Certificate to identify a user, machine, or device before granting access to a resource, network, application,​ etc.  In the case of user authentication,​ it is often deployed in coordination with traditional methods such as username and password. Certificate-based authentication is the use of a Digital Certificate to identify a user, machine, or device before granting access to a resource, network, application,​ etc.  In the case of user authentication,​ it is often deployed in coordination with traditional methods such as username and password.
  
-In order to enable certificate-based authentication for a LUCY user you need to go into the user management (in settings) and within the specific user you have to enable the checkbox "​certificate required"​. Before creating the certificate you need to save the changes. Once you enabled this setting you have to click on the certificate generation icon. After a few seconds, you will be able to download the certificate.+In order to enable certificate-based authentication for a LUCY useryou need to go into the user management (in settings) and within the specific user you have to enable the checkbox "​certificate required"​. Before creating the certificate you need to save the changes. Once you enabled this setting you have to click on the certificate generation icon. After a few seconds, you will be able to download the certificate.
  
 {{ certificate_auth.png?​600 }} {{ certificate_auth.png?​600 }}
password_policies_login_protection_strong_authentication.1551445391.txt.gz · Last modified: 2019/03/01 14:03 by lucy