web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics GP (Archived) / Changing credentials e...
Microsoft Dynamics GP (Archived)

Changing credentials every 45 days as per security policy

(0) ShareShare
ReportReport
Posted on by Richard Wheeler 75,848 Moderator

The IT folks at one of our clients announced that they will begin changing credentials every 45 days as per security policy for of their domain  accounts including those that run SQL, MR and the web client. This will also include the 'sa' password for SQL. Has anyone else had to deal with a situation like this? Sure we know all the accounts and can change the passwords but I see MR and the web client ceasing to function. Do any guidelines exist as to what else needs to be done besides changing passwords? Are there config files that will need to be changed?

*This post is locked for comments

I have the same question (0)
  • Suggested answer
    MG-16101311-0 Profile Picture
    MG-16101311-0 26,225 on at
    RE: Changing credentials every 45 days as per security policy

    My assumption will be that you are specifically referring to domain accounts, and not SQL logins.

    For web client, you will need to change the service account passwords, then restart the services. If they have different credentials for application pools, those need to be updated in IIS then you will need to restart those app pools.

    MR, kinda the same thing, will need to update service account passwords and restart services.

    There's nothing in the form of config files that I can think of at this time.

  • Verified answer
    Beat Bucher GP Geek GPUG All Star Profile Picture
    Beat Bucher GP Gee... 28,058 Moderator on at
    RE: Changing credentials every 45 days as per security policy

    Hi Richard,

    I don't know your client's premise for security, but let me tell you that if they are big and have a ton of SQL servers & lots of various services running, it's going to be a nightmare for them to change their service account's password every 45 days..

    I've been supporting a company where the SQL servers where deployed by using a different user account for every freaking service (Agent, SSRS, SQL, SSIS, name it) and chasing down on the various instances the various accounts has become a true chore.. Fortunately they are not requiring pwd changes every X days.. but in my case one of the used accounts disappeared from AD and the hell broke out

    PS: IMHO the policy makes sense for regular user accounts, but service accounts should just be configured with a strong password (read : long & complex) and not be touched anymore.

  • Richard Wheeler Profile Picture
    Richard Wheeler 75,848 Moderator on at
    RE: Changing credentials every 45 days as per security policy

    How true. I am the lowly consultant. I can only advise not set policy. I will give them a detailed list of every service account the SQL/GP uses and hope they can exclude those. If they chose not to listen then my time is billable.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Join experts in person to explore low code and AI agents at the Power Platform Community Conference sponsored by Microsoft

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Abhilash Warrier – Community Spotlight

We are honored to recognize Abhilash Warrier as our Community Spotlight honoree for…

Congratulations to the September Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics GP (Archived)

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans