Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
siwei
/
web-server
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu kéo về 0 Wiki
Branch: master
Branches Tags
web-server
/
doc
/
en
/
user
/
source
/
security
/
webadmin
/
passwords.rst

passwords.rst 2.5 KB
Permalink Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. .. _security_webadmin_passwd:
    2. 

  2. 

  3. Passwords
    4. 

  4. =========
    5. 

  5. 

  6. This page configures the various options related to :ref:`security_passwd`, the :ref:`security_master_passwd`, and :ref:`security_passwd_policy`.
    7. 

  7. 

  8. .. note:: User passwords may be changed in the Users dialog box accessed from the :ref:`security_webadmin_ugr` page.
    9. 

  9. 

  10. .. _security_webadmin_masterpasswordprovider:
    11. 

  11. 

  12. Active keystore password provider
    13. 

  13. ---------------------------------
    14. 

  14. 

  15. This option sets the active keystore password provider, via a list of all available keystore password providers.
    16. 

  16. 

  17. .. figure:: images/passwd_activemaster.png
    18. 

  18. 

  19.    Active keystore password provider
    20. 

  20. 

  21. To change the keystore password click the :guilabel:`Change password` link.
    22. 

  22. 

  23. .. figure:: images/passwd_changemaster.png
    24. 

  24. 

  25.    Changing the keystore password
    26. 

  26. 

  27. .. warning:: First thing to do as an Administrator of the System, would be to dump the Keystore Password generated by GeoServer, store it somewhere not accessible by anyone, and delete any ``security/masterpw.info`` or whatever file you used to dump the password in clear.
    28. 

  28. 

  29. Keystore Password Providers
    30. 

  30. ---------------------------
    31. 

  31. 

  32. This section provides the options for adding, removing, and editing keystore password providers.
    33. 

  33. 

  34. .. figure:: images/passwd_masterprovider.png
    35. 

  35. 

  36.    Keystore password provider list
    37. 

  37. 

  38. .. note:: By default the login to Admin GUI and REST APIs with Keystore Password is disabled. In order to enable it you will need to manually change the Keystore Password Provider ``config.xml``, usually located into ``security/masterpw/default/config.xml``, by adding the following statement::
    39. 

  39. 

  40.     ``<loginEnabled>true</loginEnabled>``
    41. 

  41. 

  42. Password policies
    43. 

  43. -----------------
    44. 

  44. 

  45. This section configures the various :ref:`security_passwd_policy` available to users in GeoServer.  New password policies can be added or renamed, and existing policies edited or removed.
    46. 

  46. 

  47. By default there are two password policies in effect, ``default`` and ``root``.  The ``default`` password policy, intended for most GeoServer users, does not have any active password constraints.  The ``keystore`` password policy, intended for the :ref:`security_root`, specifies a **minimum password length of eight characters**.  Password policies are applied to users via the user/group service.
    48. 

  48. 

  49. .. figure:: images/passwd_policies.png
    50. 

  50. 

  51.    List of password policies
    52. 

  52. 

  53. Clicking an existing policy enables editing, while clicking the :guilabel:`Add new` button will create a new password policy.
    54. 

  54. 

  55. .. figure:: images/passwd_newpolicy.png
    56. 

  56. 

  57.    Creating a new password policy
    58.