Welcome to Telelogic Product Support
  Home Downloads Knowledgebase Case Tracking Licensing Help Telelogic Passport
Telelogic DOORS (steve huntington)
Decrease font size
Increase font size
Topic Title: User Administration
Topic Summary: Looking for help with passwords and idle users.
Created On: 25-Jan-2006 14:52
Status: Post and Reply
Linear : Threading : Single : Branch
Search Topic Search Topic
Topic Tools Topic Tools
Quick Reply Quick Reply
Subscribe to this topic Subscribe to this topic
E-mail this topic to someone. E-mail this topic
Bookmark this topic Bookmark this topic
View similar topics View similar topics
View topic in raw text format. Print this topic.
 25-Jan-2006 14:52
User is offline View Users Profile Print this message


Craig Forant

Posts: 56
Joined: 21-Feb-2005

This might be worth 2 seperate discussions, but I will start with this posting and see where it goes.

1. I want to ask my users to change their password at regular intervals. I cannot seem to find any options in DOORS for this. I am running DOORS 7.1, patch 12.

2. I also want to kick out users that have been idle for too long. This could be a bit more complicated. My intention is to recover licenses that some of my users are trying to hold on to for their personal use.

Thanks in advance for all your replies in advance.

-Craig

-------------------------
Craig Forant
me@craigforant.com
Report this to a Moderator Report this to a Moderator
 25-Jan-2006 16:30
User is offline View Users Profile Print this message


Tony Goodman

Posts: 1098
Joined: 12-Sep-2002

You can set the expiry interval for passwords, plus other options like whetehr or not passwords can be reused.

For a single user,
Select a user and click Edit.
Select Security Tab.

I cannot see a way to set the expiry interval for all users?

In DXL, you set the passwordLifetime property:

User usr = find("Fred")

usr.passwordLifetime = 30

saveUserRecord(usr)

-------------------------
Tony Goodman
http://www.smartdxl.com

Edited: 25-Jan-2006 at 16:46 by Tony Goodman
Report this to a Moderator Report this to a Moderator
 25-Jan-2006 17:03
User is offline View Users Profile Print this message


Craig Forant

Posts: 56
Joined: 21-Feb-2005

Thanks Tony...I see where you say this is located. The field you reference is grayed out for Administrator. Maybe I can loop through all users and set this expire period with DXL. I will test the DXL info you gave me.

Thanks again.

-Craig

-------------------------
Craig Forant
me@craigforant.com

Edited: 25-Jan-2006 at 17:06 by Craig Forant
Report this to a Moderator Report this to a Moderator
 25-Jan-2006 17:22
User is offline View Users Profile Print this message


Louie Landale

Posts: 2070
Joined: 12-Sep-2002

You may need to "loadUserRecord(usr)" before setting the variable.
Report this to a Moderator Report this to a Moderator
 25-Jan-2006 17:40
User is offline View Users Profile Print this message


Craig Forant

Posts: 56
Joined: 21-Feb-2005

I was able to use the following...Seems to work on my test DB.

-------------------------
Craig Forant
me@craigforant.com
Report this to a Moderator Report this to a Moderator
 25-Jan-2006 17:52
User is offline View Users Profile Print this message


Craig Forant

Posts: 56
Joined: 21-Feb-2005

I guess the last thing to do is force the users to change their password at next logon with our new security policy. Any ideas on how that is done?

BTW...you two are the absolute biggest help for me using DOORS. I have read hundreds of your posts and all of them have helped me out in one way or another.

Thanks.

-------------------------
Craig Forant
me@craigforant.com
Report this to a Moderator Report this to a Moderator
 8-Mar-2006 16:10
User is offline View Users Profile Print this message


Frank Lipski

Posts: 42
Joined: 6-Nov-2002

Did anyone come up with a way to force the users to change their password at the next login? It would be great if there was a way to do that similar to what happens with a new user password.
Report this to a Moderator Report this to a Moderator
 31-Mar-2006 01:00
User is offline View Users Profile Print this message


Chris Jones

Posts: 177
Joined: 1-Jul-2005

quote:

Originally posted by: Craig Forant

2. I also want to kick out users that have been idle for too long. This could be a bit more complicated. My intention is to recover licenses that some of my users are trying to hold on to for their personal use.



I don't know off hand if you can kick users out automatically (i.e., in code), but you can use the "DOORS Database Server Manager" to do so manually. (If that app's not already in your start menu you can get it by rerunning the DOORS installer and adding the server--then you get the server tool as well. There may be a better way to get it...)

We have a script that uses database locks to see who's logged in and gives a nice listing of users and dates. You can also query the license server (if you use one) to see who's got a license out, and when they got it. Then you can use the server manager to disconnect them.

Power.....use with care.


Chris
Report this to a Moderator Report this to a Moderator
 3-Apr-2006 23:18
User is offline View Users Profile Print this message


Louie Landale

Posts: 2070
Joined: 12-Sep-2002

Our IT is going through the same thing; no doubt "password" issues are pushed around a lot lately.

I figure to write a DXL to set each Users password expiration to 90 days, as suggested in an earlier Email. This SHOULD force a change, and with the new password policies, the next time they login.

I notice a flag in the User directory, don't recall its name, but it forces users to change their password the very first time they login. DXL couldn't read the flag and certainly couldn't set the flag; so much for forcing password changes to everyone right now. I'm considering creating a new user Attribute perhaps call "Password Changed Date", checking for it when they log in (..err.. actually when they first open a module), and going from there. But that doesn't look too realistic.

Am interested in this issue if anyone solves it.

- Louie
Report this to a Moderator Report this to a Moderator
 27-Apr-2006 20:22
User is offline View Users Profile Print this message


Reik Schroeder

Posts: 361
Joined: 28-Jul-2003

Hi Chris,

nice idea - I've implemented something like this a few month ago.
But there is a really hard problem of this idea ...
You can kick off the users from DOORs database server, but the licenses will not be released until the user tries to do something in DOORs client.

The Client uses the licenses until it will be closed - and it does not recognize the lost connection to server until you click on something ....

There is one advance of using dbadmin to remove database connections --> You can ensure that no user is logged into database.
If you only disable user logins in database properties, already logged in user won't be logged out ...

Greetings
Reik Schröder

-------------------------
Evosoft GmbH
for Siemens Industry Sector


Berlin, Germany
Report this to a Moderator Report this to a Moderator
 17-May-2006 15:47
User is offline View Users Profile Print this message


Ed Janonis

Posts: 10
Joined: 10-Aug-2005

Craig,

Any "Database Administrator" person can set the password expiration. 
There is a switch under Tools ->Manage Users ...

I would like to know how to see what the user activity level is myself.

Ed Janonis
Report this to a Moderator Report this to a Moderator
 25-May-2006 16:04
User is offline View Users Profile Print this message


Brian Azelborn

Posts: 36
Joined: 2-Dec-2002

There is a FlexLM feature that will allow you to remove a license from idle users. For the feature to work, the application has to respond to the request to remove the license from the user. DOORS does not respond to the Flex request. We have been trying to get Telelogic to add this capability for at least 2 years now. Maybe similar requests from multiple customers will get some action!

You can use the Flex tools to remove a license from users, but if they have DOORS minimized it will re-check the license out. We automatically remove all licenses from users at 2AM - most re-check them out by 2:15AM. The only ones that don't re-check out a license are the ones that crashed without releasing their license.

As far as forcing a password change on the next login, according to the developer that I talked to at the Leadership Council meeting, there is currently no mechanism to do that.

Brian Azelborn
Rockwell Collins
Report this to a Moderator Report this to a Moderator
Statistics
20925 users are registered to the Telelogic DOORS forum.
There are currently 0 users logged in.
The most users ever online was 15 on 15-Jan-2009 at 16:36.
There are currently 0 guests browsing this forum, which makes a total of 0 users using this forum.
You have posted 0 messages to this forum. 0 overall.

FuseTalk Standard Edition v3.2 - © 1999-2009 FuseTalk Inc. All rights reserved.