New article
Recently updated
Preventing password reuse
In v5.4 we have added the ability to prevent the re-use of user passwords over a configurable period of time.
If the system was implemented at v5.4 and the application pool's user account has dbo access rights to the database then no further action is required, this feature will be active and the user will not be able to reuse a password within 30 days.
Otherwise, implement as follows:
Updating the service configuration
In App Manager:
- Open the correct instance
- Click Config > Web UI
- Locate the section <Pentana.Tng.UI.Web.FBA> and add the following line:
<add key="passwordRecyclePeriod" value="30" />
Note that the value is days, and can be changed as required
- Save the file
- Click to the FBA tab
- Repeat the change
Modifying the database
If using Windows authentication for database access:
- In IIS Manager, locate the WebUI and FBA applications, and find the application pool used to run both
- Identify the Windows user account used for the application pool
If using SQL authentication for database access:
- Identify the SQL account used from the Web.config file
Then:
- At the SQL Server, verify the permissions allocated to the database user
- If the user has dbo then no further action is necessary - the next time a user changes their password, the service will automatically create the new table required for this function to work
If the user does not have dbo then it will be necessary to create a new table:
- Back up the database
- Verify that the backup is valid
- Run the attached script
Now, when a user attempts to change their password, and to change to a password that they have used within the number of days configured, they will receive the error "Unable to use a previous password".