Re: [openstack-dev] [keystone][qa] PCI-DSS (security compliance tests)

2016-10-14 Thread Rodrigo Duarte
On Fri, Oct 14, 2016 at 2:23 PM, Rodrigo Duarte wrote: > > > On Fri, Oct 14, 2016 at 1:10 PM, Clark Boylan > wrote: > >> On Fri, Oct 14, 2016, at 08:21 AM, Rodrigo Duarte wrote: >> > Hi all, >> > >> > Recently in keystone we got merged the PCI-DSS

Re: [openstack-dev] [keystone][qa] PCI-DSS (security compliance tests)

2016-10-14 Thread Rodrigo Duarte
On Fri, Oct 14, 2016 at 1:10 PM, Clark Boylan wrote: > On Fri, Oct 14, 2016, at 08:21 AM, Rodrigo Duarte wrote: > > Hi all, > > > > Recently in keystone we got merged the PCI-DSS feature [1]. Basically, we > > have new settings that enforce password security practices. For

Re: [openstack-dev] [keystone][qa] PCI-DSS (security compliance tests)

2016-10-14 Thread Clark Boylan
On Fri, Oct 14, 2016, at 08:21 AM, Rodrigo Duarte wrote: > Hi all, > > Recently in keystone we got merged the PCI-DSS feature [1]. Basically, we > have new settings that enforce password security practices. For example, > if > we set the password history setting to 2, a user won't be able to

[openstack-dev] [keystone][qa] PCI-DSS (security compliance tests)

2016-10-14 Thread Rodrigo Duarte
Hi all, Recently in keystone we got merged the PCI-DSS feature [1]. Basically, we have new settings that enforce password security practices. For example, if we set the password history setting to 2, a user won't be able to update its password to one of the last 2 that have been set in the past.