Hello everyone,
The company we're working with started considering the use of password phrases with greater complexity instead of passwords. I made some changes in a test environment and put new password phrase rules into effect. However, since passwords and pw phrases are seperate, a user cannot simply change his/her password with a phrase. The only way I could find was to add a new password phrase to each ACID, with a command like "TSS ADDTO(ACID) PHRASE(Ab#12345678,,EXP)", then force them to change upon their first signon attempt. But this leads to a major problem that is reaching out to every individual about their passwords.
I wonder if the whole thing could be made simpler. Product documents do not mention such commands but, I'd welcome if there is a way to copy the current password into password phrase field, either lead or trailed by a string of characters Ab#123, to make them compliant with the new policy i.e "TSS ADDTO(ACID) PHRASE(Ab#123|PASSWORD,,EXP)" So that we could inform all users at once about the new policy rules, changes we made to their passwords and the actions they need to take. Any ideas?
Regards,
Perit