Projects:Password Policy/User Documentation

Starting from PR18Q3, a password strength policy is used to enforce users to choose good quality passwords. The applied policy requires the following:

• Password must be at least 8 characters long
• Password must contain at least three of the following:
  • Uppercase letters
  • Lowercase letters
  • Digits
  • Special characters, which may be one of the following: `~!@#$%€^&*()_-+={}[]|:;"' <>,.?/\].*

This policy will be checked in the following screens, showing an error message if introduced password is not strong enough:

• In the ERP Login page when user's password has expired:

• In the POS Login page when user's password has expired:

• Once logged in, in the User Widget, change password tab:

Applying the password policy in the User window

This features is available starting from 23Q2.

By default, if a user has access to the User window, it is possible to edit the password of users without applying the password policy. It is possible to enforce the policy to be applied also on this case by setting the value of the *Apply Password Policy in User Window* property to Y (important: all Visible at * fields must be left empty)

If the preference is enabled, the password field of the header tab will be read only and an Update Password process will be enabled.