What the max length of user's password which is possible to post?

Document ID : KB000022059
Last Modified Date : 14/02/2018
Show Technical Document Details

Question :

What is the max length of user's password which is possible to post? If I try to post a password with more than 6000 chars, the password is not forwarded to the Policy Server. If I try to post a password with less than 4500 chars, the password correctly is forwarded to the Policy Server.

Answer :

  1. There is a limitation when using FFCompatMode = yes as SiteMinder use a FROMCRED cookie that may interfer with the password length.
  2. There is a limitation in the SmAgentAPI.h on which the Webagent is build in and we can see that there is a restriction on the password length of 4096 chars.