[midPoint] Different password requirements for different roles (user/super-user)
Oskar Butovič - AMI Praha a.s.
oskar.butovic at ami.cz
Mon Sep 18 10:52:17 CEST 2017
Hello Jan,
maybe general validation mapping could do the trick. (mapping in an
objectTemplate without target wich either finishes or throws exception)
Although you have to find how to validate the password against
the valuePolicy in a script.
Best Regards
Oskar Butovič
2017-09-15 19:23 GMT+02:00 Jan Melník - AMI Praha a.s. <jan.melnik at ami.cz>:
> Hello guys,
>
> We need to specify some password complexity for regular user and more
> strict one for super users. I'm unable to specify securityPolicy in
> RoleType. Any ideas how to implement this easily? I have two valuePolicies,
> but don't know how to "attach" them to role. I assume there is no chance to
> put some condition to valuePolicies (so I'd somehow apply different setting
> in one valuePolicy).
>
> Any ideas appreciated!
>
> Jan Melnik
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint
>
>
--
Oskar Butovič
solution architect
gsm: [+420] 774 480 101
e-mail: oskar.butovic at ami.cz
AMI Praha a.s.
Pláničkova 11
162 00 Praha 6
tel.: [+420] 274 783 239
web: www.ami.cz
[image: AMI Praha a.s.]
[image: AMI Praha a.s.]
<http://www.ami.cz/reseni-a-sluzby/bezpecnost-dat/identity-management>
Textem tohoto e-mailu podepisující neslibuje uzavřít ani neuzavírá za
společnost AMI Praha a.s.
jakoukoliv smlouvu. Každá smlouva, pokud bude uzavřena, musí mít výhradně
písemnou formu.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170918/e65fd768/attachment.htm>
More information about the midPoint
mailing list