PARSEC logo
Home
About Us
OpenVMS
Tru64 UNIX
HP-UX
AIX
Solaris
Linux
Microsoft
Partners
Contact Us
Live person

PARSEC experts are standing by to help you. Click to chat.

Location Information
HP
CA
 
Support Training Consulting OpenVMS


Our Trainers Consult, Our Consultants Train

OpenVMS - Password Policy

PARSEC Group has developed an easy-to-implement, site-specific, password policy for OpenVMS V6.2 and later systems. This allows more control and enforcement of password policies than what is built-in to OpenVMS. Read Password Policies for more general information about setting up a policy.

Password Policy

The character set used for passwords may be divided into four groups of characters. These are:

  • Upper-case characters (A-Z)
  • Lower-case characters (a-z) - available in OpenVMS V8.2 and later
  • Numeric characters (0-9)
  • Other characters

A good password policy requires the use of multiple characters from each group which makes it tougher for a hacker to guess the password. Using all groups guarantees that it is not in a dictionary and provides many more combinations of characters for a more secure password. The policy should also disallow the use of the username and several other common practices as part of the password. Once a policy has been set up, the operating system should enforce the policy as much as possible since some users may not be trusted to follow the policy, and others might forget some details.

Password Policy Features

The OpenVMS Password Policy from PARSEC Group is a flexible module that may be configured using logical names. Basic password policy features include:

  • Minimum number of groups of characters required - Users may be required to use characters from multiple groups of characters. On versions of VMS which do not support lower case characters, and for accounts which have not had this feature enabled, lower case characters will not be required.
  • Minimum number of characters from each group - Users may be required to use a minimum number of characters from each of the four groups.
  • Limit number of repeated characters - Passwords such as "testing777" may be prevented due to the same character being repeated too many times.
  • Limit number of sequenced characters - Passwords such as "testing123" may be prevented due to too many characters in a sequence.
  • Prevent use of username - The username may be prevented from being a portion of the password.
  • Minimum password length - A system wide minimum password length may be set to prevent an account from being intentionally or unintentionally set with too few characters.

Other features include:

  • Maximum length checked - The policy may be set to be enforced within the first portion of the password.
  • Notification - The user may be notified which portions of the policy that is not met by their chosen password. This makes it easier for them to choose a secure password.
  • Hash value check - The hashed value of the password may also be checked. While the user does not directly control this, a weak hashed value can make passwords easier to compromise.

PARSEC Group OpenVMS Password Policy

Requirements: One of the following versions of VMS is required.

  • OpenVMS I64 V8.2 or later
  • OpenVMS Alpha V6.2 or later
  • OpenVMS VAX V6.2 or later

You may download a copy of the password policy. Before installing, be sure to request a license from PARSEC Group.

For more information, to request a demo license, or to purchase the OpenVMS Password Policy, please contact us at 888-4-PARSEC, send e-mail to experts@parsec.com or use our inquiry form.

 Denver office
Newsletters and Webinar updates

Subscribe email:

News
February 22, 2010
Refresher Training Promotion

Any students who have already taken a course with PARSEC Group and wishes to retake the same course, may do so, and receive 30% off the cost of the training class as long as they sign up directly through PARSEC Group.

MORE
February 19, 2010
New Training Schedule is available

The Training Schedules have been updated to reflect all 2010 scheduled sessions.

MORE
May 19, 2009
PointSecure Announces New Version of Leading OpenVMS Auditing Solution

May 5, 2009 PointSecure, the leader in OpenVMS security and auditing tools, today announced a new version of its market-leading OpenVMS auditing tool - PointAudit TM 6.5.

MORE
April 24, 2009
PARSEC Group & AdaCore Announce Partnership

April 21, 2009  AdaCore, leading provider of Ada tools and support, & PARSEC Group, a full-service IT support, training & consulting company, today announced a partnership that will benefit Ada users porting applications from older HP hardware to Itanium-based Intergrity server platforms running OpenVMS, HP-UX, or GNU/Linux.

MORE
March 31, 2009
External Authentication for OpenVMS

PARSEC Group can configure your OpenVMS v8.3 or later systems to use External Authentication to allow OpenVMS users to log in with the same password used on your Microsoft Windows domain.

MORE