Password Policies
Password policies are sets of security decisions that you make and apply to different user accounts according to security policies in your company. These choices include such items as the number of days a password is valid and the maximum and minimum length of a password.
You can use password policies to streamline your security operations when adding new users. Instead of adding having individual policies for each individual user, you can create one password policy and apply it to all users that require the same access.
- Passwords must contain upper case or lower case characters and alpha numeric characters
- Passwords must not contain identical consecutive characters
- The account lockout policy locks the account, if you enter an incorrect password.
- The account is locked for 30 minutes and is unlocked automatically after this duration.
- Only the administrator has the privileges to unlock the account from the Lock manager tab, before 30 minutes.
After you create a password policy, you can apply it only to internal user accounts. This provides you the greatest flexibility in maintaining your security policies. If you are using LDAP, you cannot apply password policies to your external accounts.
The default values for the password policy are:
Parameter |
Default Value |
|---|---|
Policy ID |
default_user |
Policy Name |
Default User Policy |
Number of days valid |
60 |
Minimum Length |
6 |
Maximum Length |
28 |
Number of passwords kept in history |
5 |
|
Password required to contain special characters |
Selected |
Required password change on next login attempt |
Selected |
- Create a password policy
- Search for a password policy
- Edit a password policy
- Delete a password policy
- Edit the lock out parameter
- Edit the password expires message