Chat now with support
Chat with Support

Foglight for Virtualization Enterprise Edition 8.9 - Security and Compliance Guide

Security overview
Foglight security measures Customer security measures Security features in Foglight Disclaimer
Security features for APM appliances Usage feedback Appendix: FISMA compliance

Password policies

Listed below are the default restrictions that apply to passwords for administrators (Foglight® users with the Foglight Security Administrator role), for internal users, and for credential lockboxes.

Users with the Foglight Security Administrator role can view and edit the configurable password policies on the Configure Password Settings dashboard in the Administration Console. Certain password policies cannot be viewed on this page or edited. They are as follows:

A user's password cannot be:

External users are subject to the password policies that are enforced on the operating systems that generated the user accounts.

Setting password complexity levels

The customer sets the enforcement complexity level passwords of credential lockboxes, internal users, and users with the Foglight® Security Administrator role. The Lockbox password complexity level, the User password complexity level, and the Administrator password complexity level list are available from the Configure Password Settings dashboard and define the following levels of increasing complexity:

By default, the complexity level for both internal users' and administrators' passwords is set to level 2. Administrators' passwords cannot be set to level 1.

Required privileges

To install Foglight®, administrative privileges on the target operating system are required. In addition, the customer is prompted to provide credentials for a database administrator account during installation. The need to enter such credentials can be bypassed as described in Manual database configuration.

Installing Foglight Management Server

To install Foglight®, administrative privileges on the target operating system are required. In addition, the customer is prompted to provide credentials for a database administrator account during installation. The need to enter such credentials can be bypassed as described in Manual database configuration.

Related Documents