Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Showing results for 
Search instead for 
Did you mean: 

login/password_max_new_valid vs login/password_max_reset_valid

Former Member
0 Kudos
1,107

Can anyone tell me what is the best practice values in setting login/password_max_new_valid and login/password_max_reset_valid fields?

1 ACCEPTED SOLUTION

Former Member
0 Kudos
201

Marcy,

The exact values depend on different requirements however may places use 30 days for initial. Some places uses as short as 90 since last change up to a year.

Cheers,

Ben

4 REPLIES 4

Former Member
0 Kudos
201

login/password_max_new_valid----


Number of days that passwords of new accounts remain valid. After an administrator creates a new account and password it is the no. of days the password is valid for even though the user has not changed it or to be more specific not logged in yet. After the specified amount of days the password is deactivated.

This is only for the new accounts.

login/password_max_reset_valid------Number of days reset passwords remain valid.

This is the no of days the user can go without resetting or changing his password after it has been reset by the administrator.

Former Member
0 Kudos
202

Marcy,

The exact values depend on different requirements however may places use 30 days for initial. Some places uses as short as 90 since last change up to a year.

Cheers,

Ben

0 Kudos
201

So if we were to put max new = 15 and max reset = 90, these values are considered reasonable?

WolfgangJanzen
Product and Topic Expert
Product and Topic Expert
0 Kudos
201

Please have a kind look on <a href="https://service.sap.com/sap/support/notes/450452">SAP Note 450452</a>: refrain from using login/password_max_new_valid