• State Not Answered
  • +1 person also asked this people also asked this
  • Replies 2 replies
  • Subscribers 11 subscribers
  • Views 1181 views
  • Users 0 members are here
Related Discussions
Home » Discussions » Administration

System Accounts That Are Not Affected by MAX_PASSWORD_AGE

nikolaosm

Dear all,

I have the following question about authentication. We have set conf.security.pw.MAX_PASSWORD_AGE to meet some security requirements about users needing to change their passwords.

However, the system also uses some "System" passwords that other IT systems use to authenticate to Process models exposed as Web Services. The problem that we are now facing is that these "System" passwords also need to change. Also our counterparty IT systems need to update their configurations to match these updated passwords.

Is there a way to
a) Create an exception list of "System" usernames whose passwords that do not change. For example the Adminstrator password does not change.
b) Make some of these usernames unable to login to Tempo or any other Appian UI so that only WS can be called using these usernames?

With kind regards,

Nikos

OriginalPostID-207838

OriginalPostID-207838

  Discussion posts and replies are publicly visible

Parents
  • 0
    Certified Lead Developer
    I don't think you can exclude certain users from password expiration policy if you are using Appian authentication. You have to use an external authentication provider like LDAP to do this. There used to be smart service to change password (now deprecated and no longer available) which could have been used to automatically change password and revert back to original password. I would like to know if there's any other way to achieve this or if Appian could include this feature in the product in future. This is a very common use case when we need to expose a process model as a webservice.
Reply
  • 0
    Certified Lead Developer
    I don't think you can exclude certain users from password expiration policy if you are using Appian authentication. You have to use an external authentication provider like LDAP to do this. There used to be smart service to change password (now deprecated and no longer available) which could have been used to automatically change password and revert back to original password. I would like to know if there's any other way to achieve this or if Appian could include this feature in the product in future. This is a very common use case when we need to expose a process model as a webservice.
Children
No Data
© 2024 Appian. All rights reserved.
We want to hear from you! Submit a review on Gartner or G2.