Strong Passwords with eDirectory
Articles and Tips: qna
01 Sep 2003
Q.
Dear Ab-end: The Executive Committee at my company is pushing for a secure or strong password policy on our network clients. Currently we are using NetWare 6.x, GroupWise 6.x, eDirectory 8.7, ZENWorks 6, and SecureLogin. The criteria for this policy must include the following:
No repeated passwords
Required alphanumeric character combination
Check against previously used passwords
Forced expiration date/time
Minimum and maximum password length
Can you give me a plan that will appease my Executive Committee, please?
-- Password Parched Perry in Pondicherry
A.
Dear Parched: I could suggest some ideas for using the products that you mention, but you may well be better off upgrading to NetWare 6.5. This version includes eDirectory 8.7.1, which has a new Universal Password feature that will allow for strong password policies.
From what I know, Universal Password is a new, encrypted password that is reversible. This will allow you to use just one password to access eDirectory and/or related services. In addition, eDirectory 8.7.1 includes the Enterprise Edition of NMAS (Novell Modular Authentication System). This is a big plus, since you can now use virtually any security method to login to eDirectory, or stack them for multiple authentication. These methods can be hardware (biometric) or software-based, or both.
* Originally published in Novell AppNotes
Disclaimer
The origin of this information may be internal or external to Novell. While Novell makes all reasonable efforts to verify this information, Novell does not make explicit or implied claims to its validity.