BlackBerry Forums Support Community

DarthBBerry · 06-26-2008, 07:31 AM

Searched around, but havent been able to find an answer to this one...

When creating/modifiying the IT Policy, under the Password Policy Group, then forbidden passwords: is there a way to prevent the users name from being part of the password? Can the "$N" be used in the Forbidden Password field?

Thanks,
~DBB
"Snootch to the nootch!"

hdawg · 06-26-2008, 09:21 AM

Not possible; good recommendation though.

DarthBBerry · 06-26-2008, 09:41 AM

Quote:

Originally Posted by hdawg

Not possible; good recommendation though.

Blargh!!!

I guess we'll have to do the "social engineering" version of this policy.

ATTENTION BLACKBERRY STAFF
The Policy parameters for BlackBerry Passwords are as follows:
• Minimum 8 characters
• Password must contain at least 1 letter and 1 number
• Password must be changed every 90 days
• Previous 10 passwords cannot be used
• BlackBerry device will lock after 30 minutes of inactivity
• Letter repetition in passwords is restricted (e.g.: aaa, bbb, ccc)
• Your name (first or last) cannot be part of the password

Maybe the announcment will be enough to prevent them from trying it.

hdawg · 06-26-2008, 09:43 AM

I think you'll have decent success with that.

penguin3107 · 06-26-2008, 09:43 AM

Quote:

Originally Posted by DarthBBerry

Maybe the announcment will be enough to prevent them from trying it.

If it were my company, an announcement like that is enough to cause them to throw their device in a river.

Frank Castle · 06-26-2008, 10:03 AM

No kidding. Hope you have a secondary policy ready for all the exceptions

AlanM · 06-26-2008, 10:17 AM

Wow, Darth, even I'm not that evil (ok well maybe I am, but I'm choosing to show restraint).

but ours do lock after 15 minutes regardless of activity.

knottyrope · 06-26-2008, 10:21 AM

Boy thats rough, what type of company do you have?

juwaack68 · 06-26-2008, 10:21 AM

Quote:

Originally Posted by DarthBBerry

Blargh!!!

I guess we'll have to do the "social engineering" version of this policy.

ATTENTION BLACKBERRY STAFF
The Policy parameters for BlackBerry Passwords are as follows:
• Minimum 8 characters
• Password must contain at least 1 letter and 1 number
• Password must be changed every 90 days
• Previous 10 passwords cannot be used
• BlackBerry device will lock after 30 minutes of inactivity
• Letter repetition in passwords is restricted (e.g.: aaa, bbb, ccc)
• Your name (first or last) cannot be part of the password

Maybe the announcment will be enough to prevent them from trying it.

This is very similar to our policy, except we have a 6 character minimum and allow up to 60 minutes before locking.

Many of the newer devices (like my my 8830 with 4.2 OS) won't allow letter repitition, regardless of the IT Policy.

DarthBBerry · 06-26-2008, 10:42 AM

Ya'll didn't read my sig file.... Wireless Sith Lord. LOL

To address some of the comments above.

If they throw it in a river, I'll charge them full retail for a replacement.
No secondary policy. No exceptions.
Government entity.

Being this evil isn't easy, but it sure is fun.

knottyrope · 06-26-2008, 11:48 AM

Ah the governement type.
Sure must be fun though being evil.

fadmin · 06-26-2008, 12:03 PM

Quote:

Originally Posted by DarthBBerry

Blargh!!!

I guess we'll have to do the "social engineering" version of this policy.

ATTENTION BLACKBERRY STAFF
The Policy parameters for BlackBerry Passwords are as follows:
• Minimum 8 characters
• Password must contain at least 1 letter and 1 number
• Password must be changed every 90 days
• Previous 10 passwords cannot be used
• BlackBerry device will lock after 30 minutes of inactivity
• Letter repetition in passwords is restricted (e.g.: aaa, bbb, ccc)
• Your name (first or last) cannot be part of the password

Maybe the announcment will be enough to prevent them from trying it.

So after all these rules what password is left to be used? hahaha