Once an administrator has added a new user's
email address to the system, the user can choose a password and login securely using that password. The core authentication system stores a representation of each user's credentials in the LabKey database. Specifically, it stores a one-way hash of a salted version of the user-selected password (which increases security) and compares the hashed password with the hash stored in the core.Logins table. Administrators can configure requirements for the password strength and the password expiration period.
To configure database authentication and the associated user password rules, go to:
- To manage database authentication, select Admin > Site > Admin Console.
- On the Site Administration page, click Authentication.
- On the Authentication page, next to database, click Configure.
For details on password configuration see: