topic Re: Advanced Server External Authentication Password Length Limit in Operating System - OpenVMS

Advanced Server External Authentication Password Length Limit

Jeffery D. Urmann — Wed, 07 Dec 2005 18:36:44 GMT

Is there a password length limit when using external authentication?

If so, is the length configurable and how?

We have a Windows 2003 native mode domain with OpenVMS v7.3-1 as a member server via Advanced Server V7.3A.

Thank you in advance.

Enjoy,

--Jeff

Re: Advanced Server External Authentication Password Length Limit

Arch_Muthiah — Wed, 07 Dec 2005 19:01:19 GMT

Jeffery,

The password length should be specified when we define account policy using
SET ACCOUNT POLICY command, you can specify password length from 0 to 14 long using MINLENGTH qualifier. 0 is default.

Archunan

Re: Advanced Server External Authentication Password Length Limit

Jeffery D. Urmann — Wed, 07 Dec 2005 19:20:59 GMT

Archunan,

Thanx for your quick and accurate reply.

I`m sorry, I meant maximum length.

Re: Advanced Server External Authentication Password Length Limit

Arch_Muthiah — Wed, 07 Dec 2005 19:29:18 GMT

Jeff,

AS Maximum pwd lenght limit is 14 only. Ovms pwd lenght is difft.

Archunan

Re: Advanced Server External Authentication Password Length Limit

Jeffery D. Urmann — Thu, 08 Dec 2005 11:42:01 GMT

Archunan,

So you are saying that since the high side of the minimum is 14, then that makes it the maximum length? Okay. Thank you.

Anybody know of a patch to AS to allow the same maximum as allowed by active directory?

Re: Advanced Server External Authentication Password Length Limit

Brad McCusker — Fri, 09 Dec 2005 06:20:14 GMT

Quick answer, I didn't research this at all...

>Anybody know of a patch to AS to allow the
>same maximum as allowed by active >directory?

No. But, I think you need to keep in mind that AS is using NTLM v2, so, that is the limiting factor, and that is not necessarily what the Active Driectory limit is.

Now, that being said, does NTLM v2 have a higher limit than AS is currently supporting? In other words, did I miss the ppoint?

Re: Advanced Server External Authentication Password Length Limit

Jeffery D. Urmann — Fri, 09 Dec 2005 10:58:05 GMT

Brad,

I was under the mistaken impression that Pathworks was NTLM v2 and that AS was LM v3. I think (if my memory is starting to work now) it was LM Hash for pre-v6 Pathworks and NTLM for newer PW versions + AS. Thanx for the correction to my aging and fading memory.

NTLM has a max limit of 14. NTLM v2 enhanced the encryption and key space (among other things), but it looks like the character limit is still 14.

Thanx for the help Brad and Archunan.

Enjoy,

--Jeff