Reputation: 24636
wso2 identity server - password policies
Does WSO2 identity server support password policies like password ageing? I couldn't see anything relating to these features on the wso2 web site, or the identity server data sheet.
If not, is this functionality on the roadmap?
Upvotes: 2
Views: 972
Answers (3)
Reputation: 46
According to WSO2-IS they cannot directly support for this feature, hopefully in the future. If you use a Secondary User Store like LDAP we can customize this requirement, but also it depend on the LDAP type.
But as a policy, you cannot find any feature upto WSO2-IS 5.1.0 for the password ageing.
Hope this may help you.
Upvotes: 0
Reputation: 779
With WSO2 IS 4.5.0 , IS admin can define custom password policies and enforce them at user creation. Please refer the product documentation.
Upvotes: 1
Reputation: 1951
You can define limited set of restrictions such as length, allowed characters etc in the user-mgt.xml using the "PasswordJavaScriptRegEx" property. But this is applied to the front end.
Other than that the WSO2 Identity Server has not defined any password policies, it rather depends on the underlying user store's password policies. For example with the Active Directory as the user store, the WSO2 Identity Server inherits the password policy defined in the Active Directory DC.
Upvotes: 2
Related Questions
- WSO2 IS change password policy error message
- WSO2IS askPassword feature
- WSO2 Identity Server
- How to create policy for wso2 identity server Entitlement
- WSO2 Identity Server 5.7.0 - Password Policy Request for Minimum Password Age
- WSO2 Identity Server Authorization Service
- WSO2 Identity Server Authentication
- Set Password history policy in WSO2 IS
- WSO2 Identity Server: Storing user password as PlainText
- Deploying a custom Password Policy file for WSO2 Identity Server