4.2 Creating a Passphrase Question

As an administrator, you can:

If you have installed Novell SecureLogin in LDAP GINA mode with eDirectory, Novell SecureLogin does not work while setting a passphrase for a new user if the eDirectory user’s fully distinguished name (FDN) has 128 characters or more.

To create a passphrase question:

  1. Launch the Administrative Management utility (iManager, SLManager, or MMC snap-ins).

  2. Click Advanced Setting. The advanced setting options are deployed.

    By default, User-defined passphrase questions is selected. Deselect this option if you do not want users to create their own passphrase question and answer.

  3. Click New.

  4. In the Enter a new passphrase question dialog box, provide your passphrase question.

  5. Click OK. The question you provided is displayed in the Corporate passphrase questions field.

    This passphrase question is displayed to all users associated with the selected object.

  6. Repeat the Steps 3 to Step 5 to create additional passphrases.

IMPORTANT:Make sure you click OK after you have created the passphrase question to save the changes and exit the page.

The passphrase answer is specified by the user when he or she sets up the passphrase question and answer. Ideally, passphrase answers must contain a minimum of six characters. However, you can change the policy to suit your security requirement. For more information, see Section 5.2, Changing a Passphrase Policy.

We recommend that you do not apply strict policies to passphrase answers as it make them harder to remember. Instead, we recommend you to use a multivalue question, such as What is you driving license number plus your age? and set a passphrase policy based on that.