'Re: [opennms-devel] Implement a pwd expire time of 90 days'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       opennms-devel
Subject:    Re: [opennms-devel] Implement a pwd expire time of 90 days
From:       Dave Bell <me () geordish ! org>
Date:       2013-04-16 16:02:14
Message-ID: CACXVQYBcWxuxDj8DZD9qUQ6ae8o9d_rBP5LDH+cycFEZHsQgug () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


On 12 April 2013 14:56, Ejarque, Juan (NSN - ES/Madrid) <
juan.ejarque@nsn.com> wrote:

>
> I=92d like to ask your help to develop a fix/enhancement of OpenNMS for t=
he
> following issue:
>
> *The openNMS p**ass**w**ord** is compliant with encryption requirements**=
,
> but th**e only problem is that it doesn't have a maximum expire time,
> that needs to be implemented according to general security policies.*
> *The request is that the **password must remain **valid for a maximum of
> 90 days** from when it was last changed**. So, there must be a** **
> password** expiration time of 90 days**.*
>
>

Hi Juan,

Have you thought about tying OpenNMS into a centralised authentication
platform, such as LDAP or RADIUS, and letting the centralised platform take
care of password expiration etc?

This is currently possible, you can find some documentation here:
http://www.opennms.org/wiki/Spring_Security_and_LDAP
http://www.opennms.org/wiki/Spring_Security_and_Radius

Not what you are looking for, but may fit your requirements if you already
operate such a system!

Regards,
Dave

[Attachment #5 (text/html)]

<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On 12 April 2013 \
14:56, Ejarque, Juan (NSN - ES/Madrid) <span dir="ltr">&lt;<a \
href="mailto:juan.ejarque@nsn.com" \
target="_blank">juan.ejarque@nsn.com</a>&gt;</span> wrote:<br> <blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><font face="Calibri"><span style="font-size:11pt"> \
<div>I’d like to ask your help to develop a fix/enhancement of OpenNMS for the \
following issue:</div>

<div> </div>
<div><font face="Consolas"><span style="font-size:10.5pt"><i>The openNMS \
p</i><i>ass</i><i>w</i><i>ord</i><i> is compliant with encryption \
requirements</i><i>, but th</i><i>e only problem is that it doesn&#39;t have a \
maximum expire time, that needs to be implemented according to general security \
policies.</i></span></font></div> <div><font face="Consolas"><span \
style="font-size:10.5pt"><i>The request is that the </i><i>password must remain \
</i><i><u>valid for a maximum of 90 days</u></i><i> from when it was last \
changed</i><i>. So, there must be a</i><i> </i><i><u>password</u></i><i><u> \
expiration time of 90 days</u></i><i>.</i></span></font></div> <div> \
</div></span></font></blockquote><div><br></div><div>Hi Juan,<br><br></div><div>Have \
you thought about tying OpenNMS into a centralised authentication platform, such as \
LDAP or RADIUS, and letting the centralised platform take care of password expiration \
etc?<br> <br></div><div>This is currently possible, you can find some documentation \
here:<br><a href="http://www.opennms.org/wiki/Spring_Security_and_LDAP">http://www.opennms.org/wiki/Spring_Security_and_LDAP</a><br><a \
href="http://www.opennms.org/wiki/Spring_Security_and_Radius">http://www.opennms.org/wiki/Spring_Security_and_Radius</a><br>
 <br></div><div>Not what you are looking for, but may fit your requirements if you \
already operate such a system!<br><br>Regards,<br>Dave<br></div><div> \
</div></div></div></div>



------------------------------------------------------------------------------
Precog is a next-generation analytics platform capable of advanced
analytics on semi-structured data. The platform includes APIs for building
apps and a phenomenal toolset for data science. Developers can use
our toolset for easy data analysis & visualization. Get a free account!
http://www2.precog.com/precogplatform/slashdotnewsletter

_______________________________________________
Please read the OpenNMS Mailing List FAQ:
http://www.opennms.org/index.php/Mailing_List_FAQ

opennms-devel mailing list

To *unsubscribe* or change your subscription options, see the bottom of this page:
https://lists.sourceforge.net/lists/listinfo/opennms-devel

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic