Passwords

IBM PEM security includes password hashing, resetting password, settings for password expiration and maximum invalid login attempts, and a user lockout period.

Password expiration

Users must change their passwords periodically. If the password is not changed before it expires, the user must reset the password to access the application. By default, the password expiration is set to 90 days from the date the password was last updated. System Administrator can configure the number of days between expiration.

Resetting your password

If a user forgets both password and answer to the security question, the Sponsor Administrator or Partner Administrator can reset the password for the user as they have the privileges to reset the password for their corresponding users.

By default, the Reset Password link is set to expire 24 hours from the time that the Reset Password link is generated. System Administrator can configure the number of hours for the expiration.

Invalid attempts and user lock out

Users are locked out of IBM PEM when the number of invalid login attempts exceeds the value for that is set for maximum invalid login attempts. By default, the maximum number of invalid attempts is set to 5 and the lockout duration is set to 1 hour. The values for these properties can be configured by the IBM® System Administrator.