Finance | Project Operations, Human Resources, ...

Question on GP Security

(0) Share

Report

Posted on by sdcraig

364

So the customer does not use the Enforce Password Policy and their Auditors had a question: email from customer

"the “Enforce Password Policy” options are not checked, so AD policy is not being used.

We are being asked by internal audit to provide screenshots of Great Plains configuration around password parameters/setting, such as password length and complexity, frequency of password resets, the number of times a user may attempt to log in before being locked out, etc."

I do not believe GP has any sort of policy but wanted to check to make sure

Categories:

Microsoft Dynamics GP

All responses (2)

Answers (0)

sdcraig 364 on at

Like (0)

Report

RE: Question on GP Security

Thanks Justin - that is what I figured but wanted to make sure
Suggested answer

Justin Sutton on at

Like (0)

Report

RE: Question on GP Security

Hi Steven,

Without that checkbox marked, GP has basically no requirements for the user passwords. This is because we rely on SQL to handle these requirements (if you open the settings for a login within SQL it looks pretty close to the window within GP for a new user).

I generally use single letter or two letter "passwords" for my test accounts (i.e. sa's password is 'sa') by having this option unmarked.

When you mark it, it gets marked in SQL as well, and starts to follow the settings outlined in Windows/AD, which is detailed here:

docs.microsoft.com/.../password-policy