Skip to main content
Skip table of contents

Passwords (Including LDAP/AD passwords)

Memority offers password authentication natively.

Password authentication is activated for all offerings, including My-Identity subscriptions without the My-Access suite. Passwords can be provisioned and synchronized with your directories (LDAP, AD).

Password policy

Memority supports a finegrained password policy management for each identity type: i.e. password policies can vary based on populations (e.g. password expiry set to 3 months for external users, 6 months for employees).

The following criteria can be configured:

  • Complexity (min/max length, number of identical characters authorized, % of distinct characters, etc.)

  • Attributes Re-Use: prevent users from using certain attributes in their passwords (first name, last name, organization, etc.)

  • Custom Dictionary Checks

  • Last Used Passwords

Memority also supports activation/expiry/renew strategies and password deactivation (grace period, etc.).

Customers frequently use stronger password policies for admins.

image-20240722-131352.png

Read Next

FIDO2 For Windows Hello, Yubikeys & Passwordless Authentication — My-Access offers Passwordless Authentication using Fido2 or Windows Hello tokens. FIDO2 is the passwordless evolution of FIDO U2F.
OTP SMS / Mail authentication — My-Access offers authentication via OTP sent by email or SMS, compatible with authentication to access Web applications, mobile applications and heavy clients.
OATH For Authenticator Apps — My-Access offers authentication through OATH to generate TOTPs on mobile Authenticator Apps such as Google Authenticator, Microsoft Authenticator or any other eligible application.
x509 Certificates For Chip Cards & Badges — My-Access offers Authentication using x509 certificates, namely for chip card (badges) authentication or for certificates stored in browsers.
Passwords (Including LDAP/AD passwords) — Memority offers password authentication natively.
IDP Proxy — My-Access supports SAML2, OIDC and OAuth2 protocols as Service Provider (SP) in a scenario where user authentication/authorization is delegated to an external Social Network (Meta, Google, X, etc.) or private third party Identity Provider (IdP) using their own local credentials.
Kerberos Authentication — My-Access supports transparent Kerberos authentication.
Secure Cookie — Memority provides authentication via Secure Cookie (“Trust this device”), which is mostly used in B2C contexts.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close