Project

General

Profile

Actions
Copy link

Documentation #42165

open

Feature #47765: mgr/dashboard: security improvements

mgr/dashboard: Document new password requirements in the installation documentation

Added by Lenz Grimmer over 4 years ago. Updated about 2 years ago.

Status:
New
Priority:
Low
Assignee:
-
Category:
Docs
Target version:
Ceph - v15.0.0
% Done:

0%

Tags:
Backport:
Reviewed:
Affected Versions:
Ceph - v15.0.0
Pull request ID:

Description

Starting with Ceph Octopus, the Dashboard supports enforcing some minimum password complexity rules. These limitations should be documented, so users are aware when creating new user accounts. In particular, it should be noted that a password:

  • Must contain at least 8 characters
  • Cannot contain username
  • Cannot contain any keyword used in Ceph, e.g. "osd", "host", "dashboard", "pool", "block", "nfs", "ceph", "monitors", "gateway", "logs", "crush", "maps"
  • Cannot contain any repetitive characters e.g. "aaa"
  • Cannot contain any sequencial characters e.g. "abc"
  • Must consist of characters from the following groups:
    • alphabetic a-z, A-Z
    • numbers 0-9
    • special chars: !"#$%& \'()*+,-./:;<=>?@[]^_`|~
    • any other characters (signs)

Related issues 1 (0 open1 closed)

Related to Dashboard - Feature #25232: mgr/dashboard: Support minimum password complexity rules ClosedElzbieta Dziomdziora

Actions
Actions
Copy link

Also available in: Atom PDF