How to Disable User Password Expiration on CA Performance Center

book

Article ID: 141055

calendar_today

Updated On:

Products

CA Infrastructure Management CA Performance Management - Usage and Administration DX NetOps

Issue/Introduction

We had a NagVis and CAPC integration failure due to the user's password expiring. Could you please consider the possibility that the user does not have a password expiration date in CAPC

Cause

External user's passwords should not be affected by the password lifespan.
this is a know defect and is fixed in 3.7.5 and newer versions.

Environment

Release : 19.1

Component : IM Reporting / Admin / Configuration

Resolution

[[email protected]]# ./SsoConfig
Single Sign-On Configuration Tool
Enter q to quit the program or b to go back to previous menu

SSO Configuration:
1. CA Performance Center
Choose an option > 1

SSO Configuration/CA Performance Center:
1. LDAP Authentication
2. SAML2 Authentication
3. Performance Center
4. Single Sign-On
5. Test LDAP
6. Export SAML2 Service Provider Metadata
7. Enable FIPS
8. Performance Center Local Password Authentication
9. Enable or Disable a user account.
Choose an option > 8

SSO Configuration/CA Performance Center/Performance Center Local Password Authentication:
Enforce password requirements (default: Enabled):
Allow REST to create users with usernames and passwords that match (default: Enabled):
Minimum password length (default: 8):
Password lifespan (default:105 days):
Disable password expiration for a specific user:
Enable password expiration for a specific user:
Expire password for a specific user:
Expire all passwords immediately:
Failed login attempts before blocking (default 6):
Timeframe for failed login attempts (default 3 minutes):
Disable user after failed login attempts (default: Disabled):
Number of minutes to block IP address after failed login attempts (default: 0 minutes (Disabled)):

Next choose option 4 password lifespan

1. Remote Value
2. Local Override

Select 1 Remote Value to modify the setting. 

use u for update and set it to 0 to disable the lifespan.

Just for reference:

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/it-operations-management/performance-management/3-7/administrating/performance-center-administration/manage-authentication-requirements.html 

 

IF you got the message:

INFO: No sso.properties file found. Using default DB connection configuration.

INFO: No sso.properties file found. Using default DB connection configuration.

 

This is already fixed on CAPM 3.7.7 or you can manually disabled via mysql using the netqosportal table:

update user_definitions set PasswordExpiration=0 where name='username';

select PasswordExpiration from  user_definitions where username = <username>;