search cancel

Password policy on NAC for internal users such as "superuser"?

book

Article ID: 202315

calendar_today

Updated On:

Products

CA Release Automation - Release Operations Center (Nolio) CA Release Automation - DataManagement Server (Nolio)

Issue/Introduction


Is it possible to configure a password policy on NAC for internal users like "superuser"?
Our security politics force use for example min 8 signs or 1 big letter, password history etc.

Environment

Release : 6.7

Component : CA RELEASE AUTOMATION EXECUTION SERVER

Resolution

There is currently no Password Policy functionality within the Release Automation product.   If connected with an LDAP server users passwords will be controlled at the LDAP level, but the default superuser is hardcoded and cannot be removed/locked from the system, and will remain available to allow access to the software in the event of the LDAP related problems. 

Our recommendation would be to set a password that conforms to your policy and then restrict access to the superuser account to a small number of administrators.