Question

9231: The password specified is invalid.

Laserfiche

Updated December 5, 2022

asked on November 23, 2022

This is a message you can get when trying to change your password as a Laserfiche User. No matter what is typed for a password it thinks it is invalid and will not take anything which means they can not change their password. What does it mean by invalid?

https://doc.laserfiche.com/laserfiche.documentation/11/administration/en-us/Default.htm#../Subsystems/lfmsg/Content/9231.htm

0 0

Replies

replied on November 30, 2022

I believe that "9231: The password specified is invalid" is specifically about the current password. Often you are required to enter the current password in order to change it, and this indicates that the current password entered was not correct. LFS does have error codes if the new password does not meet policy, including explicit messages for common cases "9158 The password does not meet the minimum length requirement of the password policy" and a catch-all "9027 Password would violate password policy".

1 0

replied on December 5, 2022

It only asks for the new password and confirmation, so it could not be talking about the old password.

0 0

replied on November 23, 2022

What's the password policy that's configured, if any? Do passwords have to meet a minimum length and/or character type requirement? Is there a password history list where you can't reuse the previous x number of passwords?

Please verify that the new password that's being set is one that meets the configured password policy.

0 0

View 1 previous reply

replied on November 23, 2022

We will have to wait for an administrator to check that and get back to us. The error mentions no specifics about policies or password requirements which need to be met so the specific user is locked out because they are told they need to change their password before they can login.

I asked them to type an entire sentence just to try something different and long and it still says it is invalid. There really is no way to know how to proceed as a user until their administrator returns, so for now they are locked out.

0 0

replied on November 23, 2022

There are only four relevant password policy configuration areas. See Complexity Requirements and Password History.

Minimum number of character sets
Minimum password length
Reject passwords containing the user name
Password history - prevent re-use of old passwords

Entering "an entire sentence" could still violate #1 or #3.

0 0

replied on November 23, 2022

Got it, I have seen all those configurations before, we need an admin to clarify this for us though. I wish the error could have been more specific or allowed them to at least login under their old password until an administrator could come and assist.

0 0

replied on November 30, 2022

Looked at it with IT this morning, There is no Minimum Character requirements, Password Length, or Complexity set. Everything in the password policy is default and set to disabled / off / none etc.

So we could not determine what makes the new password invalid.

They are removing the requirement to change a password for now so that the user can login.

0 0

You are not allowed to follow up in this post.

Question

Question

9231: The password specified is invalid.

Replies

Sign in to reply to this post.