Edit a password policy

This article describes how to edit the settings of an existing password policy.

Who can use this feature?

• WorkspaceOwners , Super Admins , and Admins

• Only supported using the Cerby web app

As a workspace Admin , you can edit the settings of an existing password policy to change the execution of automated password rotations.

Due to the current implementation of the Password Policies feature, the following rules have been established:

• You cannot change the event type from User login to Schedule and vice versa. You must delete the policy first and then create a new one with a different event type.

• For scheduled-based policies, you cannot edit the starting date; this setting is only available when creating the policy. You must delete the policy first and then create a new one with a different starting date.

• The updated password policy takes precedence over the old policy. However, if the old policy has started, the automated password rotations are rescheduled as follows:

  • User login-based policies: the queued rotations of the old policy are executed as planned and then, the new policy is implemented. The new policy will only start after the next user login event.

  • Schedule-based policies: the new policy is implemented after the current scheduled password rotations are executed according to the frequency. For example, if you change the frequency from 2 weeks to 1 month, you must wait until the 2-week rotation is executed, and then, the new policy is implemented.

NOTE: Take into consideration that Cerby performs only one password rotation every 24 hours after the last successful rotation by policy.

To edit a password policy, you must complete the following steps:

1. Log in to your Cerby workspace.

2. Select the Password Policies option from the left menu. The Password Policies page is displayed with a table of policies.

3. Click the Edit (

   

   ) icon of the corresponding policy. The Edit password policy dialog box is displayed. TIP: You can also select the Edit policy option from the More options(

   

   ) drop-down menu.

4. Enter a new name in the Policy name field, if applicable.

5. Update the policy settings according to the event type:

   • User login

     1. Select the new schedule interval of the automated password rotations from the Schedule interval drop-down menu:

        • 1 hour after login

        • 2 hours after login

        • 4 hours after login

        • 8 hours after login

        • 12 hours after login

        • 1 day after login

        • 2 days after login

   • Schedule

     1. Specify the new frequency of the automated password rotations by entering a number and selecting the corresponding option in the Frequency section:

        • days

        • weeks

        • months

        • years

For example, if you enter 1 and select week , the password rotations will be executed every week starting after the rotations of the old policy are executed.

   2. Specify a new time window to execute the automated password rotations in the **Time window execution** section.

IMPORTANT: The time window consists of a start and an end time, and must be at least 8 hours.

1. Click the Confirm button. The dialog box closes, and a success message box is displayed.

Now you are done.