Thread: WSI TOKEN- Reset Password

I want to get an idea of how users are handling the issue of resetting the password when the super admin account is expired. Keep in mind that I want to stay compliant. I did find an article stating the AdminPwdChangeDays can be change. However, I found a post stating to stay compliant the value cannot be more than 30 days.

Possible solution?
Is there a way where I can programmatically reset the password? Lets say, check the password changed date for the WSI Super Admin account. The day before the reset date, I can programmatically by WSI update the password for the super admin account. Therefore, I will not have to update again until the next 30 days...

You could create another super-admin account, used only by WSI, with a much longer timeout expiration on pwd...that way, WSI programmatically can continue, with normal PABP/PA-DSS requirements on "human" admins intact.

So your saying I can change AdminPwdChangeDays in the appconfig to be more than 30 days? According to one of the ADNSF staff, setting the value to more than 30 days is a PCI violation and it's not recommended (see this link: http://forums.aspdotnetstorefront.co...nPwdChangeDays). Please explain...

That is the point of providing you the appconfig: AdminPwdChangeDays parameter so you can change it with your own preference. Though PABP recommendation is 30 days.