2007 Jul 19 9:22 AM
Can anyone tell me what is the best practice values in setting login/password_max_new_valid and login/password_max_reset_valid fields?
2007 Jul 19 4:49 PM
Marcy,
The exact values depend on different requirements however may places use 30 days for initial. Some places uses as short as 90 since last change up to a year.
Cheers,
Ben
2007 Jul 19 4:45 PM
login/password_max_new_valid----
Number of days that passwords of new accounts remain valid. After an administrator creates a new account and password it is the no. of days the password is valid for even though the user has not changed it or to be more specific not logged in yet. After the specified amount of days the password is deactivated.
This is only for the new accounts.
login/password_max_reset_valid------Number of days reset passwords remain valid.
This is the no of days the user can go without resetting or changing his password after it has been reset by the administrator.
2007 Jul 19 4:49 PM
Marcy,
The exact values depend on different requirements however may places use 30 days for initial. Some places uses as short as 90 since last change up to a year.
Cheers,
Ben
2007 Jul 20 1:14 AM
So if we were to put max new = 15 and max reset = 90, these values are considered reasonable?
2007 Jul 20 3:38 PM
Please have a kind look on <a href="https://service.sap.com/sap/support/notes/450452">SAP Note 450452</a>: refrain from using login/password_max_new_valid