Since 2017, LuxSci has supported application-specific passwords. These enable users to create distinct username/password combinations for use with different applications, devices, or for shared account access. These login aliases can have limited privileges; for example, granting access only to email or only to web site file storage. Use of application specific passwords can greatly enhance user security.
In the past few weeks, LuxSci has released several enhancements to application-specific passwords.
Application-specific Password Enhancements
Automatic Expiration
When creating new application-specific passwords, users can now optionally provide an expiration date. Once the expiration date has been reached, the application-specific password will be automatically deleted from LuxSci. Automatic expiration improves security by making it easier to control the time frame that custom access credentials are functional. Most security frameworks are very clear about the need to carefully control access, especially credentials used by third parties: these credentials need to be revoked when no longer needed. Automatic expiration simplifies this process and reduces the potential of human error in credential management.
Web site management
For customers that use SFTP to manage web site files, application specific passwords now provide the option of creating custom SFTP credentials that, when used, login with the permissions of the “web server” (instead of the permissions of the customer user). This makes the the management of PHP-based web sites much simpler.
API Management
LuxSci’s API tools for the automated management of application-specific passwords have also been updated with support for the new automatic expiration and web site management functionality.
Creating Application-specific Passwords
Customers can create application-specific passwords by:
- Logging into their LuxSci web interface accounts. Login here.
- Use the top menu to navigate to Account > Settings
- Then navigate to Security > General
- Scroll down to the section “Application Passwords”.
- Use the tools therein to make the new authentication credentials.