PWPOLICY Class
Each record in the PWPOLICY class defines a password policy. These policies are sets of rules for both the validity of new passwords, and for the length of time the passwords are valid.
capamsc141
Each record in the PWPOLICY class defines a password policy. These policies are sets of rules for both the validity of new passwords, and for the length of time the passwords are valid.
The key to the PWPOLICY class is the name of the password policy.
The following definitions describe the properties contained in this class record. Most properties are modifiable and can be manipulated using selang or the administration interfaces. Non-modifiable properties are marked
informational
.- APPLS(Informational). The list of CA SSO applications that are linked to the password policy.
- COMMENTDefines additional information that you want to include in the record.Privileged Access Managerdoes not use this information for authorization.Limit:255 characters.
- CREATE_TIME(Informational) Displays the date and time when the record was created.
- GROUPSDefines the list of CONTAINER records that a resource record belongs to.To modify this property in a class record, change the MEMBERS property in the appropriate CONTAINER record.Use the mem+ or mem- parameter with the chres, editres or newres command to modify this property.
- OWNERDefines the user or group that owns the record.
- PASSWDRULESSpecifies the password rules. This property contains a number of fields that determine howPrivileged Access Managerhandles password protection. For a complete list of the rules, see the modifiable property PROFILE of the USER class.Use the passwordparameter and the rules or rules- option with the setoptions command to modify this property.
- UPDATE_TIME(Informational) Displays the date and time when the record was last modified.
- UPDATE_WHO(Informational) Displays the administrator who performed the update.