Once an administrator has added a
new user's email address to the system, the user can choose a password and login securely using that password. The core authentication system stores a representation of each user's credentials in the LabKey database. Specifically, it stores a one-way hash of a salted version of the user-selected password (which increases security) and compares the hashed password with the hash stored in the core.Logins table. Administrators can configure requirements for the password strength and the password expiration period.
To configure
database authentication and the associated user password rules:
- Select (Admin) > Site > Admin Console.
- Click the Settings tab.
- Under Configuration, click Authentication.
- On the Authentication page, for the provider Standard authentication provider, click Edit.
- On the Configure Database Authentication page, you have the following options:
- Password Strength: Require Weak or Strong passwords.
- Password Expiration: Configure how often users must reset their passwords.
- Click Save.
- Click Done and then Done again to return to the Admin Console.
- Click the Settings tab.
- Under Configuration, click Site Settings.
- Confirm that the System default domain setting is set to the correct domain for user log in.
For details on password configuration options see:
Note: these password configuration options only apply to user accounts authenticated against the LabKey authentication database. The configuration settings chosen here do not effect the configuration of external authentication systems, such as LDAP and CAS single sign on.
