Login  
Hello there!

Need Help? We are right here!
miniOrange Support
miniOrange Email Support
success

Thanks for your Enquiry.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×

Contents

Configure & Manage Password Rotation

Password rotation is a critical security practice that ensures privileged credentials remain protected by periodically changing them. This prevents unauthorized access and mitigates risks associated with compromised passwords.

miniOrange PAM simplifies this process by enabling administrators to automate password rotations based on predefined schedules or after each usage. This guide provides a step-by-step approach to setting up and managing password rotation policies effectively.


Glossary:

Password Rotation: The automated process of periodically changing passwords to prevent unauthorized access.
Rotation Interval: The frequency at which passwords are rotated (e.g., every 30 days).
Scheduled Rotation: A policy where passwords are updated at set intervals.
After Every Use Rotation: Ensures passwords are changed immediately after each usage.
System User: Any privileged account that requires credential rotation, such as Active Directory accounts.

Managing Password Rotation:

Follow these steps to add and manage Password Rotation effectively.

Accessing the Rotation Policies Section:

  • Open the miniOrange PAM dashboard.
  • Navigate to the Policies section from the left-side menu.
  • Select Password Rotation to open the configuration panel.

    • Here, you can view and manage all existing password rotation policies.


    Accessing the Rotation Policies Section

Understanding the Password Rotation Dashboard:

The dashboard provides a structured overview of all configured password rotation policies.

  • Search Bar: Find policies quickly using keywords.
  • Policy Name: Displays the name of each configured password rotation policy.
  • Linked Password Policy: Shows which password policy is associated with the rotation settings.
  • Rotation Type: Indicates whether the policy follows a scheduled or per-use rotation.
  • Actions:
    • Edit: Modify existing policy settings.
    • Delete: Remove a policy if no longer needed.

Configuring a New Password Rotation Policy:

  • Click the + Add Policy button.
  • A setup window will appear where you need to configure policy details.

Define General Settings:

  • Policy Name: Assign a unique name for easy identification.
  • Password Policy: Select the predefined password policy to apply.
  • System User: Choose system accounts that require password rotation.

Choose a Rotation Type:

    Select how and when passwords should be updated:

  • Option 1: Scheduled Rotation
    • Start Date & Time: Choose when the first password rotation should begin.
    • Rotation Frequency: Define how often passwords should change:
      • Every X Hours
      • Every X Days
      • Every X Months
  • Option 2: Rotation After Every Use
    • Forces password rotation immediately after each login.
    Adding a Rotatio Policies Section

    Once all configurations are set, click Add to activate the policy.


Frequently Asked Questions (FAQs)


Can I edit a password policy after creating it?

Yes, navigate to Password Policy, locate the policy, and modify settings.

What happens if I delete a password policy?

Deleting a policy removes all associated security configurations.

How does password expiry work?

If a password remains unchanged beyond the expiry period, the selected expiry action (force reset, grace period, or lock) is enforced.

Can I allow users to reuse old passwords?

Can I allow users to reuse old passwords?No, you can configure the Store Last N Passwords setting to prevent password reuse.

What happens if a user’s password does not meet complexity requirements?

They will be prompted to create a stronger password that adheres to policy rules.