SAP Knowledge Base Article - Public

2420640 - Passwords: Configuring Password & Login Policy Settings - SuccessFactors Platform

Symptom

  • Where to locate our company's password and login policy?
  • Which options are available for password and login policy configuration?

Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental.

Environment

SAP SuccessFactors HXM Suite

Resolution

  • Where to locate our company's password and login policy?
  1. Admin Tool;
  2. Company Settings;
  3. Password & Login Policy Settings;
  • Which options are available for password and login policy configuration?

         After selecting 'Password & Login Policy Settings', please note that you have the following settings displayed upon scrolling down.

Policy.png

Below you will find a brief explanation of some of the options shown in the screenshot above:

  • Minimum Password Age (in days): controls when password can be changed again based on the latest password change, preventing users from changing password too frequently.
    Example: if value 1 is set on this field, it means that 1 day is the minimum time frame for a user to change their password, i.e. the password can be changed only once a day.
    Note: if value -1 is set on this field, it means there is no minimum time frame for a user to change their password, i.e. the password can be changed as many times as needed, even on a same day.
  • Maximum Password Age (in days): controls how frequently users should change their password.
    Example: if value 30 is set on this field, it means that users will be asked to reset their password 30 days after their latest password change, i.e. users are prompted every 30 days.
    Note: if value -1 is set on this field, it means there is no maximum time frame for a user to change their password, i.e. users are never asked to reset their password.

    Please note that every time you change this value from -1 to a value >0 (means disabled), or change it back to -1 (re-enable), users are asked for password reset upon their next login. However, simply extending or reducing the period (from 10 to 50 or 30 to 10, for example) will not force the users to change their password.

  • Case Sensitive: If checked, case sensitivity between capital and uncapitalized characters will be applied. If left unchecked, 'password1' will work as a substitute for 'PASSword1'.

  • Enable Forgot Password feature: if checked, end users can retrieve their own passwords, provided that you select one of the three options below:

    a) Allow users to retrieve password by providing an email address (only select this option when email addresses are unique for each user)

    b) Reset passwords using security questions accessed through e-mail link (this option lets users receive an email with a link to reset their password after answering the security questions correctly)

    c) Reset passwords using security questions accessed through the system (this option redirects users to the security question page to reset their password after answering the security questions correctly)

    Note: Enabling the security question options will force users to reset their passwords and will require users to enter security questions, if not previously set up. Prior to choosing this option, we recommend that you communicate this change to your end users.

  • History policy rejects passwords that are identical to a recently used password. Please enter a number between 2 and 10.  

         It will rejects passwords that are identical to the 3 recently used passwords if you enter 3 in the above text box

Please note that some options listed above may not be compatible with certain types of Single Sign-On. If your company employs an internal Single Sign-On solution and you need to configure a specific setting for Password & Login Policy, please report an incident for more information.

Keywords

password policy, login policy, configure password policy, password settings, password policy configuration, password & login policy, password and login, case sensitive, password age, password length , KBA , LOD-SF-PLT , Platform Foundational Capabilities , LOD-SF-PLT-PWD , Password Policy Settings & Reset Password , How To

Product

SAP SuccessFactors HXM Suite all versions