User Administration System
It is strongly recommended to employ the operating system to ensure authentication for the PMOD ATL users.
In a Windows environment, the Active Directory (AD) can be employed for central user administration. It supports many features for a strict user authentication policy, for instance:
- Request for a password change after first login.
- Request for a password change after 90 days.
- Locking out of a user after 5 failed login attempts.
To employ the AD for a secure PMOD ATL installation, the following setup is proposed:
- All machines running PMOD should belong to the AD.
- There should be a global group "PMOD Group" for the PMOD users.
- The PMOD Group should only contain PMOD users.
- The AD password requirements should reflect the company security policy.
- All PMOD users should be configured as "OS users".