3264665 - What's New "New Password Security Policy for Business Users"

Q & A:

1. Does this improvement affect existing Users?

Ans: This change will not affect existing users. If a user has password policy S_BUSINESS_USER, the password rules are still bound by the S_BUSINESS_USER policy. Customer can change the password policy assigned to a business user anytime from the Business User Edit Attributes screen.

2. For whom it will be impacted and How?

Ans: If a password policy is default, it means that any new employee hired in the system (or in other words, new business users created in the system), will have this particular password policy. In this case, previous default password policy is 'S_BUSINESS_USER'. Now if default password policy is set to 'S_BUSINESS_USER_V2', this does not affect the users having either of the password policies, it only means that for any new business users created in the system, the password policy 'S_BUSINESS_USER_V2' will be assigned as default.

3. My default security is not S_BUSINESS_USER but S_BUSINESS_USER_WITHOUT_PASSWORD. What would be the risk if I do not change those users (for integration) security policies to S_BUSINESS_USER_V2? Would the basic authentication loses its functionality?

S_BUSINESS_USER_V2 provides a much more stricter policy for passwords of Business User. That's where our recommendation is to move to new security policy. However, if there is no change done then system will continue to work.

4. When would be the full deprecation of S_BUSINESS_USER ?

As of now full deprecation of S_Business_user is not planned.. We will give at least one release notice in advance before stopping the support

5. Will there be any impact, If a user overwrite a security policy?

It is completley based on the user decision and business need. User can assign the desired password policy to a user anytime from Application and User Management -> Business Users -> Edit -> Attributes screen.