To Randomize Passwords Using the Policy TabBefore you can randomize passwords, configure the Local User Inventory to populate resources (and to be able to match the password with the resource). If you are setting up the Password Randomization Policy for the first time, set the interval (the frequency that the Password Randomization Policy is run) between 1 and 7 days. If you have a frequently changing environment, such as a test environment, make the interval shorter. Randomizing passwords at regular intervals ensures that passwords can't be exploited to gain access to valuable network resources. If you have a highly sensitive environment, where users aren't being added or removed a lot, then increase the interval length.
To randomize passwords, do the following steps:
- From the Arellia Security Management Console, go to the Policies tab.
- Navigate to Arellia / Local Security / Policies / Randomize Administrator Password.
- From the The Randomize Administrator Password window , you can configure all of the Settings listed aboveis divided into three parts: Settings, Schedules, and Applied To. From Settings, choose the type of User account, the minimum password length, password complexity, and whether to log the new randomized password at the server.
- From Schedules, configure a schedule when the password randomization command will occur (this includes setting the interval or frequency that the Password Randomization Policy is run).
- From Applied To, configure either Targets or Resources to apply password randomization.
- Enable the policy, by ensuring the green toggle is on.
- Save the policy. Passwords will be randomized on the set schedule.
Schedule password randomization
To Create a Schedule for
...
Password Randomization
...
, go to Schedules and select New Schedule. The New Trigger window appears.
Tip | ||
---|---|---|
| ||
When dealing with many machines, administrators can create a schedule to randomize passwords on target machines. This saves time manually having to run the password randomization command on a machine-by-machine basis. |
- From Schedules, select New Schedule.
- Add filters to the New Schedule using the following filter values:
- Is equal to
- Is not equal to
- Ends with
- Contains
- Does not contain
- Is contained in
- Is not contained in
- Is empty
- Is less than
- Is less than or equal to
- Is greater than
- Is greater than or equal to
- Is null
- Is not null
To Select Which Computers to Apply the Password Randomization Command
Select computers
To select which computers to apply password randomization, do the following steps:
- From Applied To, select Computers.
- Name the Targeted Computer.
- From Filtering Rules, create or select a pre-configured filter.
- Add rule.
- Apply the rule to a Resource.
- Administrators can search for a resource, or view which resources match these rules.
- Click Save or Cancel.