Skip to content

Commit

Permalink
Sample configuration for password strength rules (opensearch-project#…
Browse files Browse the repository at this point in the history
…1020)

* Sample setup for password strength configuration for internal user.
  • Loading branch information
hardik-k-shah authored Feb 8, 2021
1 parent ad2b42c commit f17c78f
Showing 1 changed file with 11 additions and 0 deletions.
11 changes: 11 additions & 0 deletions securityconfig/elasticsearch.yml.example
Original file line number Diff line number Diff line change
Expand Up @@ -170,6 +170,17 @@ opendistro_security.audit.type: internal_elasticsearch
# Use only in a private network/environment.
#opendistro_security.allow_unsafe_democertificates: false



# Password strength rules for password complexity.
# If you want to set up password strength rules for internal users, you can use the below settings for it.
# Password validation rules can be configured through regex. In the below regex example, a user must need
# a password with minimum 8 characters length and must include minimum one uppercase, one lower case, one digit, and one special character. 
# And a custom error message can be configured, in case if a password is not created according to the password strength rule.   
# opendistro_security.restapi.password_validation_regex: '(?=.*[A-Z])(?=.*[^a-zA-Z\d])(?=.*[0-9])(?=.*[a-z]).{8,}'
# opendistro_security.restapi.password_validation_error_message: "A password must be at least 8 characters long and contain at least one uppercase letter, one lowercase letter, one digit, and one special character."


############## Expert settings ##############
# WARNING: Expert settings, do only use if you know what you are doing
# If you set wrong values here this this could be a security risk
Expand Down

0 comments on commit f17c78f

Please sign in to comment.