Hello ,
As per Valeo security standard, we would like to enforce following for accounts stored in application.
- Minimum password length as 14
- Password requires mixed case
- Password requires non-alphanum
- Password requires number
- Enable Password complexity
At the moment teamforge accounts like scmadmin and scmviewer are hardcoded and there is no easy approach to update the password , to meet above requirement .
The workaround proposed in the ticket https://support.digital.ai/hc/en-us/requests/176847 suggest several configuration changes with teamforge provision required on all nodes in the teamforge cluster. As we would like to rotate the password every 90 days, this is not a feasible option, with several hours of downtime to reset the password for two account..
Kindly request you consider this enhancement request to support password changes for scmadmin and scmviewer via Teamforge UI or by an alternate approach without downtime.
by: Vineeth C. | over a year ago | Administration
Comments
Both scmadmina nd scmviewer users are internal users which are needed in order to be able to communicate between TeamForge and the Git Integration. There is no way to change those passwords without downtime, as those password has to be applied on both ends. IOW, to change those password without downtime would be a security risk.
Please also have a look at this: https://www.sans.org/blog/time-for-password-expiration-to-die/