The security settings are divided in two parts, the password settings and the behaviour settings.
Parameter | Description |
Minlength | Minlength defines the minimum length of a password. Set a high number for added security |
Count lowercase characters | Defines the minimum count of lowercase characters in passwords, e.g. setting it to 4 means that a password has to be “abcdEFG” (at least four lowercase characters) |
Count uppercase characters | Defines the minimum count of uppercase characters in passwords, e.g. setting it to 4 means that a password has to be “ABCDefg” (at least four uppercase characters) |
Count numbers | Defines the minimum count of numbers in passwords, e.g. setting it to 4 means that a password has to be “1234abc” (at least four numerical characters) |
Force symbols | This forces the user to use at least one symbol such as $%&# |
Prohibit parts of the username | This option prohibits users from using their username or parts of it for their password, e.g. the user ‘John’ cannot use a password like ‘John123’ |
Behaviour
Behaviour settings control the security mechanism for failed login attempts as well handle addtional permission checks for business objects and templates.
Setting | Description |
Block user after specified number of failed attempts | Specify a limit for failing logins to prevent Brute Force Attacks. If the user exceeds the limit he will be blocked. To unlock the user, the admin has to do this via the user management or the user can reset his password to unlock himself – Recommended Value: 5 |
Demand captcha after specified number of failed attempts | This option demands a captcha after a specified number of failed attempts – Recommended Value: 3 |
Activate deprecated Connector API | Activates an deprecated API version. Only activate this if you are told to do so by the Simplifier Support. |
Enhanced Business Object Security | Activate permission check for executing Business Objects |
Enhanced Template Security | Activate permission check for rendering Templates |
Enhanced Plugin Security | Activates permission checks for all plugin slots that did not have one before. If the switch is set to active, the permission check is enabled for all slots/services of all plugins (except the captcha plugin) and no slot/service can be executed without the appropriate permission. A differentiation between the plugins is not possible. |
Activate Enhanced Connector Execution Security | This setting generates an API key that secures access from external systems using connector calls via API over the public client route (…/client/2.0/connector/). If you use it from a third-party client, this Key should be set as a header parameter named ‘SimplifierApiKey’. You can generate a new key by turning the option off and on again. |
API Key for Enhanced Security for Connector Execution |
This generated API key that must be specified in all future connector calls to the public client route (…/client/2.0/connector/). This is done as a header parameter named ‘SimplifierApiKey’. You can generate a new key by turning the option off and on again. |