Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Password Policies

    2.0-RC Snapshot Feedback and Problems - RETIRED
    2
    3
    1125
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      premod last edited by

      Hi All,

      This is my first post on this forum, not very sure this is the right page I have to mention this topic.

      I have successfully running pfsense-RC1 box running OpenVPN on it. I have configured it to use dual level auth (certificate + Password). User accounts are created locally on the firewall. I have gave rights to change the password for all users through the web gui and its working properly.

      Now the real problems, here users are allowed to change their password freely without any restriction. Now the users are able to use password such as "abcd", "1234" etc. This is potentially a risky factor, so I want to implement password policies on the box.

      I didn't see anything on the GUI, but on cli I have tried using pam_passwdqc.so module on PAM. I did the change on the /etc/pam.d/password file as below,

      password  requisite  pam_passwdqc.so min=disabled,12,8,6,5 max=40 passphrase=3 match=4 similar=deny random=42  enforce=users retry=3

      But hard to say, it didn't even responding to the change.
      Anybody have any better solution for this? please let me know.

      Thanks,
      Premod

      1 Reply Last reply Reply Quote 0
      • E
        eri-- last edited by

        There is nothing like this presently there.
        You can open a feature request on redmine.pfsense.org on this.
        If you really need it you can ask support.pfsense.com on this.

        1 Reply Last reply Reply Quote 0
        • P
          premod last edited by

          Thank you for the update.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy