Hi!
I use Id Vault and i need use security policy whith password management options.
At first, i create dynamic policy with password management options.People whith 2 polices( 1 organizational and 1 dynamic)has such policy synopsis(all setting from dynamic policy whith password options).
Security Settings:
AECL does not have a value set
AlwaysSetItems has the following values from settings document Парольная assigned in policy /Парольная
UseCustomPolicy
PwdChk
PwdAlwHTTP
PwdSync
PwdExp
PasswordChangeInterval
PasswordGracePeriod
PwdHistCnt
PWExpWarnDays
PWExpWarn
ILEnforce
ILMaxTries
ILExpMinutes
ILClearMinutes
PasswordQuality
PwdQltyIsLen
ENCSTDPref
ENCSTDAllowed
KeyItterations
ChgPwdInit
PwdCNAllow
PwdLenMin
PwdLenMax
PwdQtyMin
PwdAlphaMin
PwdUppMin
PwdLowMin
PwdNumMin
PwdPuncMin
PwdCombineMin
PwdRepMax
PwdUniMin
PwdNotStart
PwdNotEnd
NSLAllow
NSLActNotif
NSLActText
NSLDeactNotif
NSLDeactText
DisplayAECL
ECLUpdMode
ECLUpdFreq
PKReq
PKUMinWidth
PKUMaxWidth
PKUDefWidth
PKUMaxAge
PKUMinDate
PKUGenDays
PKUOldKeyDays
ENCNotAllowed
FIPSENCOn
CertExpWarnDays
CertExpWarn
OCSPCheck
OCSPDefRsp
OCSPAllowDefRsp
OCSPClockSkew
OCSPCertStatus
OCSPLogInfo
$TrustLinkIds
$dtLinksUpdate
EXPIRED_SIGNATURE_POLICY
UNSIGNED_PLUGIN_POLICY
UNTRUSTED_SIGNATURE_POLICY
IBM_JAR_SIGN_CERTIFICATE
TSAEXPIRED_SIGNATURE_POLICY
HOME_PORTAL_SERVER
HOME_PORTAL_AUTH_URL
HOME_PORTAL_AUTH_TYPE
VTName
PwdHelpDesk
PwdChgPostReset
IDVAppsOK
VaultAllowAutoDL
VaultAllowAutoDays
VaultAllowAutoHours
VaultAllowAutoDLText
CertExpWarn does not have a value set
CertExpWarnDays = 21 from Парольная assigned in policy /Парольная
ChgPwdInit = 1 from Парольная assigned in policy /Парольная
Comments has a value that is not printable set in Парольная assigned in policy /Парольная
DONT_SET_STRING = Don’t set value from Парольная assigned in policy /Парольная
DisplayName = : OrgVaultVaultSetting from OrgVaultVaultSetting assigned in policy */CenterAtom
DlgPxyActions does not have a value set
DlgPxyCookies does not have a value set
DlgPxyCtxt does not have a value set
DlgPxyHeaders does not have a value set
DlgPxyMIMETypes does not have a value set
DlgPxyURL does not have a value set
ECLUpdFreq = 0 from Парольная assigned in policy /Парольная
ECLUpdMode = 0 from Парольная assigned in policy /Парольная
ENCNotAllowed does not have a value set
ENCSTDAllowed does not have a value set
ENCSTDPref = 0 from Парольная assigned in policy /Парольная
EXPIRED_SIGNATURE_POLICY = PROMPT from Парольная assigned in policy /Парольная
FIPSENCOn = 0 from Парольная assigned in policy /Парольная
HOME_PORTAL_AUTH_TYPE = J2EE-FORM from Парольная assigned in policy /Парольная
HOME_PORTAL_AUTH_URL does not have a value set
HOME_PORTAL_SERVER = wps from Парольная assigned in policy /Парольная
IBM_JAR_SIGN_CERTIFICATE = ALLOW from Парольная assigned in policy /Парольная
IDVAppsOK = 0 from Парольная assigned in policy /Парольная
ILClearMinutes = 0 from Парольная assigned in policy /Парольная
ILClearNum = 0 from Парольная assigned in policy /Парольная
ILEnforce does not have a value set
ILExpMinutes = 0 from Парольная assigned in policy /Парольная
ILExpNum = 0 from Парольная assigned in policy /Парольная
ILMaxTries = 0 from Парольная assigned in policy /Парольная
INIFlg does not have a value set
KeyItterations = 5000 from Парольная assigned in policy /Парольная
NSLActNotif = 2 from Парольная assigned in policy /Парольная
NSLActText does not have a value set
NSLAllow = 0 from Парольная assigned in policy /Парольная
NSLDeactNotif = 2 from Парольная assigned in policy /Парольная
NSLDeactText does not have a value set
NSLOn = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
NotifOptions has the following values from settings document Парольная assigned in policy /Парольная
System dialog | 1
No notification | 2
Custom message dialog | 3
OCSPAllowDefRsp does not have a value set
OCSPCertStatus = 1 from Парольная assigned in policy /Парольная
OCSPCheck does not have a value set
OCSPClockSkew = 1 from Парольная assigned in policy /Парольная
OCSPDefRsp does not have a value set
OCSPLogInfo = 0 from Парольная assigned in policy /Парольная
PKUDefWidth = 1024 from Парольная assigned in policy /Парольная
PKUGenDays = 180 from Парольная assigned in policy /Парольная
PKUMaxAge = 36500 from Парольная assigned in policy /Парольная
PKUMaxWidth = 1024 from Парольная assigned in policy /Парольная
PKUMinDate = 01.08.1977 from Парольная assigned in policy /Парольная
PKUMinWidth = 0 from Парольная assigned in policy /Парольная
PKUOldKeyDays = 365 from Парольная assigned in policy /Парольная
PWExpWarn does not have a value set
PWExpWarnDays = 10 from Парольная assigned in policy /Парольная
Parameters does not have a value set
PasswordChangeInterval = 60 from Парольная assigned in policy /Парольная
PasswordGracePeriod = 14 from Парольная assigned in policy /Парольная
PasswordQuality = 8 from Парольная assigned in policy /Парольная
PwdAlphaMin does not have a value set
PwdAlwHTTP = 1 from Парольная assigned in policy /Парольная
PwdCNAllow = 1 from Парольная assigned in policy /Парольная
PwdChgPostReset = 1 from Парольная assigned in policy /Парольная
PwdChk = 1 from Парольная assigned in policy /Парольная
PwdCombine does not have a value set
PwdCombineHA = 5 from Парольная assigned in policy /Парольная
PwdCombineMin does not have a value set
PwdExp = 3 from Парольная assigned in policy /Парольная
PwdHelpDesk does not have a value set
PwdHistCnt = 6 from Парольная assigned in policy /Парольная
PwdLenMax does not have a value set
PwdLenMin does not have a value set
PwdLowMin does not have a value set
PwdNotEnd does not have a value set
PwdNotStart does not have a value set
PwdNumMin does not have a value set
PwdPuncMin does not have a value set
PwdQltyIsLen = 1 from Парольная assigned in policy /Парольная
PwdQtyMin does not have a value set
PwdRepMax does not have a value set
PwdSync = 1 from Парольная assigned in policy /Парольная
PwdUniMin does not have a value set
PwdUppMin does not have a value set
PxyActions does not have a value set
PxyCookies does not have a value set
PxyCtxt does not have a value set
PxyHeaders does not have a value set
PxyMIMETypes does not have a value set
PxyURL does not have a value set
SaveOptions = 1 from Парольная assigned in policy /Парольная
TSAEXPIRED_SIGNATURE_POLICY = ALLOW from Парольная assigned in policy /Парольная
Type = PolicySecurity from Парольная assigned in policy /Парольная
UNSIGNED_PLUGIN_POLICY = PROMPT from Парольная assigned in policy /Парольная
UNTRUSTED_SIGNATURE_POLICY = PROMPT from Парольная assigned in policy /Парольная
UseCustomPolicy = 1 from Парольная assigned in policy /Парольная
VTName does not have a value set
VaultAllowAutoDL = 1 from Парольная assigned in policy /Парольная
VaultAllowAutoDLText does not have a value set
VaultAllowAutoDays = 1 from Парольная assigned in policy /Парольная
VaultAllowAutoHours = 0 from Парольная assigned in policy /Парольная
Then, i remake organizational vault policy ( add password options).Policy synopsis, in my opinion, has all options need for me (
-Use custom password policy for Notes clients-Yes
-Update Internet password when Notes client password changes-Yes
-Enforce password expiration -Notes and Internet
-Required change interval,Allowed grace period,Password history (Notes only).
-Change password on first Notes client use-Yes)
Security Settings:
AECL does not have a value set
AlwaysSetItems has the following values from settings document OrgVaultVaultSetting assigned in policy */CenterAtom
PlcyDescr
Form
Type
DisplayName
hbLoad
ILExpNum
ILTimeFormat
ILClearNum
ILTimeFormat2
DocumentAccess
$Secset
$Pmgmt
$qual_001
$qual_002
SaveOptions
NotifOptions
DONT_SET_STRING
FullName
PwdCombineHA
$PolMdTm
NSLSecretFormat
$UpdatedBy
$Revisions
$EncryptionStatus
$SignatureStatus
UseCustomPolicy
PwdChk
PwdAlwHTTP
PwdSync
PwdExp
PasswordChangeInterval
PasswordGracePeriod
PwdHistCnt
PWExpWarnDays
PWExpWarn
ILEnforce
ILMaxTries
ILExpMinutes
ILClearMinutes
PasswordQuality
PwdQltyIsLen
ENCSTDPref
ENCSTDAllowed
KeyItterations
ChgPwdInit
PwdCNAllow
PwdLenMin
PwdLenMax
PwdQtyMin
PwdAlphaMin
PwdUppMin
PwdLowMin
PwdNumMin
PwdPuncMin
PwdCombineMin
PwdRepMax
PwdUniMin
PwdNotStart
PwdNotEnd
NSLOn
NSLAllow
NSLActNotif
NSLActText
NSLDeactNotif
NSLDeactText
DisplayAECL
ECLUpdMode
ECLUpdFreq
PKReq
PKUMinWidth
PKUMaxWidth
PKUDefWidth
PKUMaxAge
PKUMinDate
PKUGenDays
PKUOldKeyDays
ENCNotAllowed
FIPSENCOn
CertExpWarnDays
CertExpWarn
OCSPCheck
OCSPDefRsp
OCSPAllowDefRsp
OCSPClockSkew
OCSPCertStatus
OCSPLogInfo
$TrustLinkIds
$dtLinksUpdate
EXPIRED_SIGNATURE_POLICY
UNSIGNED_PLUGIN_POLICY
UNTRUSTED_SIGNATURE_POLICY
IBM_JAR_SIGN_CERTIFICATE
TSAEXPIRED_SIGNATURE_POLICY
HOME_PORTAL_SERVER
HOME_PORTAL_AUTH_URL
HOME_PORTAL_AUTH_TYPE
VTName
PwdHelpDesk
PwdChgPostReset
IDVAppsOK
VaultAllowAutoDL
VaultAllowAutoDays
VaultAllowAutoHours
VaultAllowAutoDLText
CertExpWarn does not have a value set
CertExpWarnDays = 21 from OrgVaultVaultSetting assigned in policy */CenterAtom
ChgPwdInit = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
Comments has a value that is not printable set in OrgVaultVaultSetting assigned in policy */CenterAtom
DONT_SET_STRING = Don’t set value from OrgVaultVaultSetting assigned in policy */CenterAtom
DisplayName = : OrgVaultVaultSetting from OrgVaultVaultSetting assigned in policy */CenterAtom
DlgPxyActions does not have a value set
DlgPxyCookies does not have a value set
DlgPxyCtxt does not have a value set
DlgPxyHeaders does not have a value set
DlgPxyMIMETypes does not have a value set
DlgPxyURL does not have a value set
ECLUpdFreq = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ECLUpdMode = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ENCNotAllowed does not have a value set
ENCSTDAllowed does not have a value set
ENCSTDPref = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
EXPIRED_SIGNATURE_POLICY = PROMPT from OrgVaultVaultSetting assigned in policy */CenterAtom
FIPSENCOn = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
HOME_PORTAL_AUTH_TYPE = J2EE-FORM from OrgVaultVaultSetting assigned in policy */CenterAtom
HOME_PORTAL_AUTH_URL does not have a value set
HOME_PORTAL_SERVER = wps from OrgVaultVaultSetting assigned in policy */CenterAtom
IBM_JAR_SIGN_CERTIFICATE = ALLOW from OrgVaultVaultSetting assigned in policy */CenterAtom
IDVAppsOK = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ILClearMinutes = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ILClearNum = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ILEnforce does not have a value set
ILExpMinutes = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ILExpNum = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
ILMaxTries = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
INIFlg does not have a value set
KeyItterations = 5000 from OrgVaultVaultSetting assigned in policy */CenterAtom
NSLActNotif = 2 from OrgVaultVaultSetting assigned in policy */CenterAtom
NSLActText does not have a value set
NSLAllow = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
NSLDeactNotif = 2 from OrgVaultVaultSetting assigned in policy */CenterAtom
NSLDeactText does not have a value set
NSLOn = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
NotifOptions has the following values from settings document OrgVaultVaultSetting assigned in policy */CenterAtom
System dialog | 1
No notification | 2
Custom message dialog | 3
OCSPAllowDefRsp does not have a value set
OCSPCertStatus = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
OCSPCheck does not have a value set
OCSPClockSkew = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
OCSPDefRsp does not have a value set
OCSPLogInfo = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUDefWidth = 1024 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUGenDays = 180 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUMaxAge = 36500 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUMaxWidth = 1024 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUMinDate = 01.08.1977 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUMinWidth = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
PKUOldKeyDays = 365 from OrgVaultVaultSetting assigned in policy */CenterAtom
PWExpWarn does not have a value set
PWExpWarnDays = 10 from OrgVaultVaultSetting assigned in policy */CenterAtom
Parameters does not have a value set
PasswordChangeInterval = 60 from OrgVaultVaultSetting assigned in policy */CenterAtom
PasswordGracePeriod = 14 from OrgVaultVaultSetting assigned in policy */CenterAtom
PasswordQuality = 8 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdAlphaMin does not have a value set
PwdAlwHTTP = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdCNAllow = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdChgPostReset = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdChk = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdCombine does not have a value set
PwdCombineHA = 5 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdCombineMin does not have a value set
PwdExp = 3 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdHelpDesk = from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdHistCnt = 6 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdLenMax does not have a value set
PwdLenMin does not have a value set
PwdLowMin does not have a value set
PwdNotEnd does not have a value set
PwdNotStart does not have a value set
PwdNumMin does not have a value set
PwdPuncMin does not have a value set
PwdQltyIsLen = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdQtyMin does not have a value set
PwdRepMax does not have a value set
PwdSync = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
PwdUniMin does not have a value set
PwdUppMin does not have a value set
PxyActions does not have a value set
PxyCookies does not have a value set
PxyCtxt does not have a value set
PxyHeaders does not have a value set
PxyMIMETypes does not have a value set
PxyURL does not have a value set
SaveOptions = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
TSAEXPIRED_SIGNATURE_POLICY = ALLOW from OrgVaultVaultSetting assigned in policy */CenterAtom
Type = PolicySecurity from OrgVaultVaultSetting assigned in policy */CenterAtom
UNSIGNED_PLUGIN_POLICY = PROMPT from OrgVaultVaultSetting assigned in policy */CenterAtom
UNTRUSTED_SIGNATURE_POLICY = PROMPT from OrgVaultVaultSetting assigned in policy */CenterAtom
UseCustomPolicy = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
VTName = O=OrgVault from OrgVaultVaultSetting assigned in policy */CenterAtom
VaultAllowAutoDL = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
VaultAllowAutoDLText does not have a value set
VaultAllowAutoDays = 1 from OrgVaultVaultSetting assigned in policy */CenterAtom
VaultAllowAutoHours = 0 from OrgVaultVaultSetting assigned in policy */CenterAtom
But when i open lotus notes whith user id at first time, i havent prompt about change password.Management policy is not working.
Please help me.