Expiring User Passwords with HANA and BI4 Feature Pack 3
By default when a HANA user is created, the password lifetime is set to 182 days (6 months). This can be modified via the configuration options as seen below.
In HANA Studio go to
- Administration
- Configuration tab
- Expand indexserver.ini
- Expand password policy
- Confirm the value for maximum_password_lifetime
In the event that a user’s password does expire, how does a user using one of the frontend BI4 tools know? Find out below.
To show what happens when a user’s password has expired, we force the user to change their password with the following SQL statement
ALTER USER <MYUSER> FORCE PASSWORD CHANGEClient Tools
HANA Studio
Explorer
Web Intelligence
Crystal Reports for Enterprise
Crystal Reports 2011
Dashboards (Xcelsius)
Analysis Edition for OLAP
Analysis Edition for Microsoft
The client tools show a different error message depending on which one is used. Only the Analysis Edition for Microsoft, lets a user change thier password within the tool itself.
Hi Vishal,
great blog.
Thank you.
Andy.
Thanks for the blog. Question for the security folks: Shouldn't Analysis Edition for Microsoft be prompting for the old password before allowing someone to change the password? With the current setup, I could hijack someone's account by sitting down at their computer at exactly the right time (if they have Analysis Edition for MS open already).
Cheers,
Ethan