This article explains how to change the password policy for users logging into your Sisense instance. This can be useful if your organization requires a more secure or specific password policy that meets certain requirements, such as a minimum number of characters, using certain types of characters, etc.
Using Sisense’s API, you can change the default password policy for users, and reset the policy back to the Sisense default (a password requiring a minimum of six characters).
Password validation is performed when a password is changed. The password regex does not affect existing passwords, i.e. old passwords continue to be valid. When the user tries to change an existing password, the new password is verified by the updated regex.
Changing the Password Policy
To access the REST API using the Sisense web app (for more information on how to access and use the REST API using your own external tools, click here):
Log into the Sisense web app, and click ADMIN in the top-right of the screen.
Click REST API in the left menu.
Click REST API Reference to view the list of operations.
- Click 0.9 in the upper-right corner
Expand the Settings section, and open POST /settings/security.
- Update the following values and replace the word “string” with your password policy regex definition, and error message tooltip. For example:
"passwordError": "Password must include 8-20 characters, which includes 1 lowercase letter, 1 uppercase letter, 1 integer, and 1 special character"
6. Click RUN.
The example above is a password definition that requires between 8 and 20 characters; must contain at least one lowercase letter, one uppercase letter, one numeric digit, and one special character, but cannot contain whitespace.
If a password does not meet these requires, the passwordError value is displayed in the error message tooltip.
For more examples, click here.
Resetting the Password Policy
To reset the changes you made, enter a blank value for the password policy regex definition:
"passwordRegex": " "
Resetting the Password Error Message
You can configure the string displayed to users regarding your password policy using the REST API mentioned above (POST /settings/security), and specify a value for the parameter: passwordError.
The value is displayed in the tooltip of the password field when you hover over it, and is used for the error message when a user provides a wrong error message.
This parameter is available from version 6.4.1 onwards.
Please sign in to leave a comment.