Configure a Splunk Light password policy
Use the Password Policy Management page to create a password policy for users. Password policies set standards and minimum requirements for complexity.
- On the Manage Accounts page, click Password management.
- In the Minimum characters field, specify the minimum number of characters to require for user passwords. You must have at least eight ASCII-based alphanumeric or special characters. The maximum number of characters Splunk software supports is 256. The default value is eight.
- In the Numeral field, specify the number of digits to require for user passwords. We recommend at least one digit. We recommend that you do allow passwords that are all digits. The default is zero.
- In the Lowercase field, specify the number of lowercase letters to require for user passwords. We recommend that you require at least one lowercase letter. The default is zero.
- In the Uppercase field, specify the number of uppercase letters to require for user passwords. We recommend that you require at least one uppercase letter. The default is zero.
- In the Special character field, specify the number of special characters to require for user passwords. We recommend that you require at least one special character. A user can create a password with any printable ASCII characters. The default is zero.
- Check Force existing users to change weak passwords to make existing users upgrade passwords to meet the new requirements specified on this page.
- Enable Lockout to lock a user out of the system after a certain number of failed login attempts.
- Enable Expiration to force a user to change their password after the specified period of time.
- In the Days until Password expires field, specify the number of days until the user must change their password.
- In the Expiration alert in days field, specify the number of days before expiration that warnings appear.
- In the Failed login attempts field specify how many failed login attempts a user can make before they are locked out.
- In the Lockout threshold in minutes field, specify the number of minutes between the time of the first failed login until the failed login attempt counter resets.
- In the Lockout duration in minutes field, specify how many minutes the user must wait before they can attempt to log in again.
- Enable History to prevent users from reusing previous passwords. Note that if you disable this value and and enable it later, previously saved password history is preserved. Delete
$SPLUNK_HOME/etc/passwdto remove the password history.
- In the Password History Count field, specify the number of previous passwords that may not be reused. The default is 24.
- Click Save. Your new password requirements are applied to the password fields in the Manage Accounts page.
Manage account settings in Splunk Light
About adding data to Splunk Light
This documentation applies to the following versions of Splunk® Light (Legacy): 7.1.0, 7.1.1, 7.1.2, 7.1.3, 7.2.0, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5, 7.2.6, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, 7.3.5, 7.3.6