Developer forum

Forum » Dynamicweb 9.0 Upgrade issues » Generate password dont match password complexity

Generate password dont match password complexity

António Ramos
António Ramos
Reply

Hi guys,

When generating a random password I receive the warning "Password must contain Numbers...".

It seems that the generate button is not taking in account the password complexity. 

Control panel -> User settings:

Global settings config:

DW Version: 9.2.8

BR,

António Ramos


Replies

 
António Ramos
António Ramos
Reply

*bump*

 
António Ramos
António Ramos
Reply

Hi guys,

In Extranet we are generating a password to new users using the below method:

After saving the user we are getting the message that the password doesn't match the right complexity. 

BR,

António Ramos

 
Oleg Rodionov
Reply

Hi António,

I've tested the issue on v9.2.8 as well as on v9.2.9 and not able to catch it - https://www.screencast.com/t/9F4ghyYXh330

BR, Oleg QA   

 
António Ramos
António Ramos
Reply

Hi Oleg,

I notice that you have the setting "Allow backend login" active. With this on you are not implicit saying that this user is not "Extranet User" (your configuration globalsettings/modules/users/passwordsecurity = low).

I have a step-by-step reproduction here:

https://www.screencast.com/t/bdNEsXnEFB

DW Version: 9.2.9

BR,

António Ramos

 
Oleg Rodionov
Reply

Hi,

New test has been done in the same way and conditiions as your video says, no bug found  - https://www.screencast.com/t/x0ljKFqnd74M

BR, Oleg QA

 
António Ramos
António Ramos
Reply

Hi Oleg,

I think there is some missing configuration between your solution and mine but besides that we can see one error in your screencast.

You have set the extranet password to High ("Password must contain numbers, upper and lower case characters and special characters") (video 18sec). In every password generated we can see that no one have special characters (video 30, 40, 50 seconds). 

BR,

António Ramos

 

 
António Ramos
António Ramos
Reply

Hi Oleg,

By the way, there is other reports related to this in the forum:

http://doc.dynamicweb.com/forum/cms-standard-features?ThreadID=51684

BR,

António Ramos

 
Oleg Rodionov
Reply
This post has been marked as an answer

Hi António,

One bug releted to wrong handling of Extranet password security in UM has been found, I've created new TFS 32700, the fix will be provided with nearest DW hotfixes/releases.

Workaround for you - set /Globalsettings/Modules/Extranet/UseWithExtranet to 0 temporarily to prevent the notice launching (now MC Extranet password security settings use another wrong key instead of corrent this).

Besides, TFS 29667 related to http://doc.dynamicweb.com/forum/cms-standard-features/cms-standard-features/generated-password-in-usermanagement-does-not-match-password-level-in-mc will be provided with nearest DW92 release.

BR, Oleg QA

Votes for this answer: 1
 
António Ramos
António Ramos
Reply

Thanks Oleg.

BR,

António Ramos

 
Ryan Meade Dynamicweb Employee
Ryan Meade
Reply

Oleg, do you have an update on what DW9 versions that TFS 32700 and TFS 29667 will be included in? 

Thanks


Ryan

 
Oleg Rodionov Dynamicweb Employee
Oleg Rodionov
Reply

Hi Ryan,

TFS 29667/32700 were fixed on DW 9.2.11.0/DW 9.2.12.0

So, it can be provided with last DW 9.2.15.0 is available to download.

BR, Oleg QA

 
Ryan Meade Dynamicweb Employee
Ryan Meade
Reply

Thank you, Oleg

 
António Ramos
António Ramos
Reply

Hi,

This was tested at DW 9.2.16 and it's working fine. Thanks Oleg.

BR,

António Ramos

 
Oleg Rodionov Dynamicweb Employee
Oleg Rodionov
Reply

Hi António,

You are welcome, thanks! :)

BR, Oleg QA 

 

You must be logged in to post in the forum