Managing Password Policies
ULTIMATE
Admins can define custom password policies to enforce the usage of strong passwords for their users. Applying password policies is highly recommended to establish higher security and hinder identity theft.
Configuring the Password Policy
As an admin, you can configure the password policy, which is used for the validation of password-based logins.
To configure the Password Policy, perform the following steps:
Navigate to the Policies page. It should load the Password tab.
Click on the Edit button in the Actions column to change the desired policy.
A dialog will appear. Apply the desired changes and click on the Confirm Button.
Note that the policy will be only applied if it is Enabled state.
Password Policy Options
The following table gives an overview of available Policy Types:
Policy Type | Description |
|---|---|
Digits | The minimum of digits required to be in the password string. |
Expire Password | The number of days until a password expires. After expiration, the user will be prompted to change the password. |
Hashing Algorithm | Passwords are encrypted at rest. The underlying hashing algorithm can be chosen here. |
Hashing Iterations | This value specifies the number of times a password will be hashed before it is stored or verified. |
Lower Characters | The number of lower case letters required to be in the password string. |
Not Recently Used | This policy saves a history of previous passwords. The number of old passwords stored is configurable. When a user changes their password they cannot use any stored passwords. |
Not Username | If enabled, the password is not allowed to be the same as the username. |
Special Characters | The number of special characters like '?!#%$' required to be in the password string. |
Uppercase Characters | The number of upper case letters required to be in the password string. |