Password criteria

Following is the default password criteria for both the Admin UI and the Persona-based UI.

General criteria

  • The password should not contain username.
  • The specified new password cannot be same as a previous password.
Important: If you change the password by using the Admin UI, log out of the current Persona-based UI session, and then login by using the new password.

Property-specified criteria

This criteria is specified by the password_strength_criteria parameter in the common.properties file.
  • The length of the password.
  • The password must contain at least one character each from the following criteria:
    • Uppercase alphabet character [A–Z] (Or equivalent characters from other supported locales)
    • Lowercase alphabet characters [a–z] (Or equivalent characters from other supported locales)
    • Base 10 digits [0–9]
    • Allowed special characters

      :;=?@!#$()*+,-.{}[]~\|^_

  • The password should not contain white space.

Properties used

Password criteria uses the following properties from the common.properties file.
  • enable_password_expiry
  • enable_user_lockout
  • force_strong_password_for_users
  • maximum_password_attempts
  • maximum_password_age_for_users
  • maximum_password_age_for_vendor
  • password_strength_criteria
Note: A password is considered to be in English language, if it does not have any non-English-language alphabet.