Backlog #5092

Security Control Enhancement

Added by OpenNebula Systems Support Team over 4 years ago.

Status:PendingStart date:03/31/2017
Priority:NormalDue date:
Assignee:-% Done:

0%

Category:Core & System
Target version:-

Description

Provide configuration options for the following:

  • Prevent reuse of user identifiers
  • Disable / lock inactive user accounts. Manual lock feature required as an option
  • Enable Passwords complexity
    - Require a minimum length of at least seven characters.
    - Contain both numeric and alphabetic characters.
    - Alternatively, the passwords/ passphrases must have complexity and strength at least equivalent to the parameters specified above.
  • Require a configurable number of changed characters when new passwords are created
  • Passwords maximum lifetime restriction
    - Ex: Change user passwords/passphrases at least once every 90 days.
  • Passwords minimum lifetime restriction
  • Passwords history enforcement
    - Do not allow an individual to submit a new password/passphrase that is the same as any of the last four passwords/passphrases he or she has used.
  • Automatic disconnect of sessions after a specified period of inactivity
  • Limit the number of incorrect password attempts by automatically locking out accounts. Manual unlock feature required as an option
  • View current users' sessions. Concurrent sessions control management

Also available in: Atom PDF