Teken Posted January 4, 2017 Posted January 4, 2017 (edited) Hello All, With 5.XX fast approaching Beta trials this new year I wanted to get my system ready for the transition. It has been noted many times from long time members and new. That transitioning from 4.XX to 5.XX required many jumping jacks due to a improper password length / password complexity requirement. My ask is what is the minimum password length and complexity in force for 5.XX? Also, please let me know what the maximum password length is along with what special characters are considered forbidden for use. As some computer systems will not allow the following special characters: @$#%^&*':> etc. Thank You! Edited January 5, 2017 by Teken
Chris Jahn Posted January 5, 2017 Posted January 5, 2017 Important User/Password changes - After installing build 5.0.8 or later from firmware 5.0.7 or earlier, your userid and password will be reset back to the system default. - If you restore a backup created prior to 5.0.8 your userid and password will be reset back to the system default. - If you downgrade to a version earlier than 5.0.8 after installing version 5.0.8 or greater, then after you downgrade to the earlier version, you will have to Factory Reset the ISY and optionally install a backup taken in that version or earlier (you do not have to factory reset the Z-Wave dongle). We'll document the full details of the rules prior to official release, but they are generally: Userid - 1 to 32 characters Password - 5 to 20 characters Cannot contain & :
Teken Posted January 5, 2017 Author Posted January 5, 2017 Important User/Password changes - After installing build 5.0.8 or later from firmware 5.0.7 or earlier, your userid and password will be reset back to the system default. - If you restore a backup created prior to 5.0.8 your userid and password will be reset back to the system default. - If you downgrade to a version earlier than 5.0.8 after installing version 5.0.8 or greater, then after you downgrade to the earlier version, you will have to Factory Reset the ISY and optionally install a backup taken in that version or earlier (you do not have to factory reset the Z-Wave dongle). We'll document the full details of the rules prior to official release, but they are generally: Userid - 1 to 32 characters Password - 5 to 20 characters Cannot contain < > & : Hello Chris, As always thank you . . .
stusviews Posted January 5, 2017 Posted January 5, 2017 I believe that the portal requires a minimum of eight characters, so I changed my ISY password to at least eight characters.
Teken Posted January 5, 2017 Author Posted January 5, 2017 I believe that the portal requires a minimum of eight characters, so I changed my ISY password to at least eight characters. The original question was more pertaining to the ISY Series Controller then the portal. But thanks for the heads up on the minimum password length. I thought it was kind of funny Chris's reply notes the user name can be one character?!? Even though having been forced to use extremely complex passwords for my entire life. I do have to say having the option to use what ever you wish is most welcomed. Because when you're using more than 12 characters everyday it gets old real quick especially if you need to enter it over and over again! The only more annoying thing is having to wait for a smart card to change values and enter the very same into a sms message and wait for another set of keys! That's super annoying . . .
larryllix Posted January 6, 2017 Posted January 6, 2017 The original question was more pertaining to the ISY Series Controller then the portal. But thanks for the heads up on the minimum password length. I thought it was kind of funny Chris's reply notes the user name can be one character?!? Even though having been forced to use extremely complex passwords for my entire life. I do have to say having the option to use what ever you wish is most welcomed. Because when you're using more than 12 characters everyday it gets old real quick especially if you need to enter it over and over again! The only more annoying thing is having to wait for a smart card to change values and enter the very same into a sms message and wait for another set of keys! That's super annoying . . . Well after years of getting familair with 6 character passwords they introduce forcing you to use some numeric characters. Next along comes, you need to use some uppercase characters. Now the latest addition to the ridiculous security scam (all your fault, right?) is the forced usage of punctuation. So now we end up with passwords that require mixed upper and lower case characters, numbers and punctuation. What does the same person do with 60-80 different passwords? Keep them in a booklet of email folder so that only one password crack is required to infiltrate somebody's whole life, in order to completely own them. Security is really improving! (sarcasm) What is really improving is the ability to put any blame for being hacked on the user. A few years back my bank cut off my card usage, forcing me to come into the branch to change my card password. Since this was the second or third time this happenned, I enquired why. I was told that I used the card with a known card hacker that was involved in password snooping. Looking at my account statements, (remember paper?) I had only used that same card in the last three months with the bank's machine, I was standing inside changing my password. Yeah, the SSL discovery days.
MikeD Posted January 6, 2017 Posted January 6, 2017 I use this for all my passwords and just have to remember one! http://www.iliumsoft.com/ewallet/
MWareman Posted January 6, 2017 Posted January 6, 2017 Important User/Password changes - After installing build 5.0.8 or later from firmware 5.0.7 or earlier, your userid and password will be reset back to the system default. - If you restore a backup created prior to 5.0.8 your userid and password will be reset back to the system default. - If you downgrade to a version earlier than 5.0.8 after installing version 5.0.8 or greater, then after you downgrade to the earlier version, you will have to Factory Reset the ISY and optionally install a backup taken in that version or earlier (you do not have to factory reset the Z-Wave dongle). We'll document the full details of the rules prior to official release, but they are generally: Userid - 1 to 32 characters Password - 5 to 20 characters Cannot contain < > & : Chris, Does this mean we can now set the username on the ISY to match the username on ISY Portal (ie, an email address)? If so, that sure would help Mobilinc Users.... Michael.
Chris Jahn Posted January 6, 2017 Posted January 6, 2017 Chris, Does this mean we can now set the username on the ISY to match the username on ISY Portal (ie, an email address)? If so, that sure would help Mobilinc Users.... Michael. Yes, you can use an e-mail address as a username on the ISY
larryllix Posted January 6, 2017 Posted January 6, 2017 (edited) Nothing like trusting an app to tell the world all your passwords. But we paid good money to a reputable company, in business for years, that we can totally trust. Edited January 6, 2017 by larryllix
Teken Posted January 6, 2017 Author Posted January 6, 2017 Nothing like trusting an app to tell the world all your passwords. But we paid good money to a reputable company, in business for years, that we can totally trust. I believe using some of these services / apps to auto generate a complex password is fine. But I have to agree letting a 3rd party vendor have direct knowledge, access, and store those very same passwords in the cloud is simply asking for trouble. The closest thing I use to something like this is from a Swedish company which is known to protect the user data to the Nth degree. I would never trust any other country which has a Government bent on spying and breaching every privacy right known to man. You want complete protection regarding passwords keep it in your head. You want something close for complex passwords and documents call upon the Swiss!
stusviews Posted January 6, 2017 Posted January 6, 2017 I have no way of knowing if it's true, but Dashlane claims that they have no access to your passwords. I do know that files on my hard drive update when I add or make changes.
kohai Posted January 6, 2017 Posted January 6, 2017 http://lifehacker.com/184773/geek-to-live--choose-and-remember-great-passwords
JoeA Posted January 8, 2017 Posted January 8, 2017 LastPass - https://www.lastpass.com/ Encrypts everything with your key before sending to the lastpass cloud for storage. Lastpass does not know your key.
MWareman Posted January 8, 2017 Posted January 8, 2017 LastPass - https://www.lastpass.com/ Encrypts everything with your key before sending to the lastpass cloud for storage. Lastpass does not know your key. This. I highly recommend it. I've used it myself for years.
Recommended Posts