I am working on implementing a password policy for a client. I had assumed that the exclusion list of operators was for the password policy requirements, so I put our demo Operator IDs for each of our applications on the server in that list. However, it only applies to the disablement policy. We have many demo Operator IDs for each application and it is not feasible for the client to keep track of all the passwords. How can I exclude demo users from having to change their password?
Yes. We do not want users to have to change the password. When we implement a password policy change it is system-wide affecting every operator. When users try to log in again, and every 3 months thereafter, they will be required to change their password. How can I exempt some users from this requirement?
I am not aware of a way to blacklist certain users from the password policy. The article only discusses blacklisting operators that are disabled, so you can still login. This would likely require an enhancement request.
Any attempts to "hack" a solution to excluding certain operators from security policies would be inherently dangerous. A product enhancement would be needed to allow this on the Security Policies page.