GitLab must implement Password Policy to increase password length, Character Variety, prompt users to change password every 90 days

vijay.gaddipati · July 3, 2018, 9:08am

Hi Team,

In our Gitlab application,

In order to incorporate the below functionality in my application, could you provide the guidelines/suggestions?

(1)    Complex passwords are required and must contain the following:
           A minimum of eight (8) characters;
           At least three (3) of the following: uppercase letters, lowercase letters, numbers, or special characters.

    (2)    The system must prompt the users to change passwords for every 90 days.

and also Could you provide the scripts if you have?

Could you provide more information which explains step by step about the process?

deltamotion · October 1, 2018, 10:34pm

Hi @vijay.gaddipati, are you integrated with Active Directory? That would be an easy way to implement such a policy.

Incidentally, mandating a regular change of passwords is no longer considered a best practice by many IT security professionals. Cf. https://www.wired.com/2016/03/want-safer-passwords-dont-change-often/

Topic		Replies	Views
Setting password complexity rules Self-managed	1	702	August 27, 2020
Add additional password complexity requirements to the free version General	1	27	October 18, 2024
GITLAB Password Available Configurations - From UI OR from gitlab config files i.e. gitlab.rb etc Self-managed	5	393	December 5, 2022
Secure/Strong Passwords Self-managed	2	262	March 25, 2021
Response to CVE-2022-1162 using LDAP Self-managed ldap , security	2	809	April 4, 2022

GitLab must implement Password Policy to increase password length, Character Variety, prompt users to change password every 90 days

Related topics