Is it possible to setup password rules for users with NavUserPassword?
pdj
Member Posts: 643
(NAV2017)
I have a client using the WebClient for non-employees. They are therefore created in NAV as users with NavUserPassword to avoid having them created in the Active Directory. So far so good.
Now they would like to setup different rules regarding their password - just like their AD users.
* Block login after X invalid attempts
* Password should be at least X chars and include special chars etc.
I guess it might be possible to solve the first requirement by reading in the event log of the NAV server, and search for failed logins. But it will not be a very nice solution - can it be done in a better way?
The only way to solve no. 2, is by trying to brute-force the password. Or do you have a better suggestion?
My only other suggestion, is to create them in the AD, but the client would like to avoid that.
I have a client using the WebClient for non-employees. They are therefore created in NAV as users with NavUserPassword to avoid having them created in the Active Directory. So far so good.
Now they would like to setup different rules regarding their password - just like their AD users.
* Block login after X invalid attempts
* Password should be at least X chars and include special chars etc.
I guess it might be possible to solve the first requirement by reading in the event log of the NAV server, and search for failed logins. But it will not be a very nice solution - can it be done in a better way?
The only way to solve no. 2, is by trying to brute-force the password. Or do you have a better suggestion?
My only other suggestion, is to create them in the AD, but the client would like to avoid that.
Regards
Peter
Peter
0
Best Answer
-
I wont say everything is achievable but I guess something you can do.
I will suggest to study Codeunit - 40.Here only you need to do tweaks,Thanks
Blog - rockwithnav.wordpress.com/
Twitter - https://twitter.com/RockwithNav
Facebook - https://facebook.com/rockwithnav/5
Answers
-
I wont say everything is achievable but I guess something you can do.
I will suggest to study Codeunit - 40.Here only you need to do tweaks,Thanks
Blog - rockwithnav.wordpress.com/
Twitter - https://twitter.com/RockwithNav
Facebook - https://facebook.com/rockwithnav/5 -
Thanks, it seems I can customize the password strength criteria in Codeunit 9801 ValidateKeyStrength(). I didn't even check as I was sure it was checked by the run-time.
But I still doubt I can catch invalid login attempts in C/AL, or does anyone have any idea to do that?Regards
Peter0
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 116 Navision DOS
- 851 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 617 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 320 Dynamics CRM
- 111 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 990 SQL General
- 383 SQL Performance
- 34 SQL Tips & Tricks
- 35 Design Patterns (General & Best Practices)
- 1 Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.6K General
- 1.1K General Chat
- 1.6K Website
- 83 Testing
- 1.2K Download section
- 23 How Tos section
- 252 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions