Guidelines for defining rules

A password policy is governed by a set of rules, called rule definitions. Rule definitions must be configured to provide the actual values of rule parameters.

Each rule definition has an implementation class that validates the rule definition parameter values set in the configuration. You can add your own custom classes to implement the rules.

Each rule must belong to a rule type. Following predefined rule types are available in the system:
  • Password policy assignment
  • Login
  • Password change
  • Password reset
  • Password secret answer

You cannot add or modify rule types. Each rule type has an associated interface, which is implemented by the class you specify.