7.4 Linking a Policy to an Application

You can set or select a password policy, while enabling applications for single sign-on using the application definition wizard. You can also link the password policies to applications by using the SecureLogin application definition command RestrictVariable. With this command, you can apply the password policies to one or more applications, as in the example below.

The following definition restricts the $Password variable to the Finance password policy. The user’s password must match the policy when he or she saves the credentials. When the password requires changing, the application generates a new password based on the policy randomly because Random is included in the definition at ChangePassword.

# Set the Password to use the Finance Password Policy
RestrictVariable $Password FinancePwdPolicy
# Login Dialog Box
Dialog
   Class #32770
   Title "Login"
EndDialog
Type $Username #1001
Type $Password #1002
# Change Password Dialog Box
Dialog
   Class #32770
   Title "Change Password"
EndDialog
Type $Username #1015
Type $Password #1004
ChangePassword $Password Random
Type $Password #1005
Type $Password #1006
Click #1

The following example uses an application definition to restrict the ?NewPwd variable to the Finance password policy. The user’s current password ($Password) is saved and used when the application starts for the first time and prompts the user to enter the credentials. When the password expires, the password policy is enforced on any new password.

# Set the Password to use the Finance Password Policy
RestrictVariable ?NewPwd FinancePwdPolicy
# Log on Dialog Box
Dialog
Class #32770
Title "Log on"
EndDialog
Type $Username #1001
Type $Password #1002
Click #1
# Change Password Dialog Box
Dialog
Class #32770
Title "Change Password"
EndDialog
Type $Username #1015
Type $Password #1004
ChangePassword ?NewPwd Random
Type ?NewPwd #1005
Type ?NewPwd #1006
Set $Password ?NewPwd
Click #1