Kaspersky Anti Targeted Attack Platform

Password policies

You can configure password policies for users of Kaspersky Anti Targeted Attack Platform: enforce password change after the first successful authentication in the application web interface and/or regularly.

These policies apply to all Kaspersky Anti Targeted Attack Platform users with the KATA user account account type regardless of the assigned role.

Enforced password change after the first successful authentication

If this functionality is enabled, passwords are changed in accordance with the following scenario:

  1. The administrator creates a user account.
  2. The user authenticates in the Kaspersky Anti Targeted Attack Platform web interface.
  3. The next time this user logs in to the web interface, the application prompts the user to change the account password. The old password becomes invalid.

The first login of the user to the main web interface of the application is counted as the first authentication. No password change prompt is displayed if the user comes back and logs in to the web interface for sizing management or the administrator menu of the application. Neither is a password change prompt displayed if the user account is used for connecting the SCN to the PCN.

Regular password change

If regular password change is enabled, the application prompts the user to change the password after the period set by the administrator expires. The countdown starts from the moment when the account password is changed and is tracked individually for each user.

Distributed solution and multitenancy mode

In

and mode, password policy settings specified on the PCN are applied to the SCNs.

Page top
[Topic 290522]

Enforced password change after the first successful authentication

For details on this feature, see the Password policies section.

To enable enforced password change after the first successful authentication:

  1. Select the Settings section in the application web interface window.
  2. Go to the Authentication policies tab.
  3. In the Change password after first authentication section, set the Request password change toggle switch to Enabled.
  4. Click Apply.

Enforced password change after the first authentication is enabled.

Page top
[Topic 290523]

Enforced regular password change

For details on this feature, see the Password policies section.

To enable and configure enforced regular password change:

  1. Select the Settings section in the application web interface window.
  2. Go to the Authentication policies tab.
  3. In the Change password regularly section, set the Request password change toggle switch to Enabled.
  4. In the Change password after field, enter the number of days after which you want to change the password.
  5. Click Apply.

Enforced password change after the specified period is enabled and configured.

Page top
[Topic 290536]