report weak credentials

Issue report by Simon Brown

Product

FileMaker Server

Version

13.0v5

Operating system version

Mac OS or Win

Description of the issue

As primarily a systems person who doesn't have DB level access, I have no easy way to determine if hosted files have weak or empty passwords.

Steps to reproduce the problem

1) file gets hosted
2) user or developer puts in "temporary" account with weak credentials
3) account is forgotten, DB is left open for access with weak credentials

Expected result

Since a user or developer might change credentials at any time, perhaps a scheduled process? Logging this would be sufficient, but email warning even better.

Alternatively, an easy scripted way to check for weak passwords from a FMP client.

Actual result

File stays accessible with weak credentials.

Exact text of any error message(s) that appear

N/A

Configuration information

N/A

Workaround

For accounts with XML access this can be checked by a script. Might also be possible with client, but would require GUI scripting unless the FMP behaviors were changed.