Configure a password policy - Administrator Guide - 8.5 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR On-prem Documentation

Product
Cortex XSOAR
Version
8.5
Creation date
2024-03-10
Last date published
2024-11-28
Category
Administrator Guide
Solution
On-prem
Abstract

Configure and edit the Cortex XSOAR password policy

To define your password policy, go to Settings & ConfigurationsSettingsAccess ManagementPassword Policy.

You can define your password policy using the following parameters:

  • Minimum number of characters

  • Minimum number of lowercase letters

  • Minimum number of uppercase letters

  • Minimum numbers of digits or symbols

In addition, you can require users to change their password every X number of days or months. By default, this setting is not enabled and passwords do not automatically expire. You can also prevent users from reusing previous passwords.

The lock settings enable you to lock a user out of Cortex XSOAR after a set number of failed login attempts within one minute. You can either have the user automatically unlocked after a set number of minutes or hours, or you can only allow the user to be unlocked by an administrator. To unlock a user, go to Settings & ConfigurationsSettingsAccess ManagementUsers, right-click on the username, and select Unlock.

Users can change their passwords by clicking the username at the bottom of left hand main menu and selecting User PreferencesDetails.