News
Abstract
This document describes the password strength rules a password policy uses to determine whether a password is valid.
Content
The following table describes each password strength rule.
| Attribute | Description |
| Maximum length | Enter the maximum number of characters for a password.
For example: If the value of this rule set to 6, the password length must not exceed 6 characters. |
| Minimum length | Enter the minimum number of characters for a password.
For example: If the value of this rule set to 12, the password must have at least 12 characters. |
| Maximum repeated characters | Enter the maximum number of times that a character can repeat consecutively in the password.
For example: If the value of this rule is 2, the user can add PPaPP as part of the password. |
| Minimum unique characters | Enter the minimum number of unique characters for a password.
For example: If the value of this rule is 3, the password must have at least 3 unique characters, such as abcdcba. |
| Minimum alphabetic characters | Enter the minimum number of alphabetic characters for a password.
For example: If the value of this rule is 3, the password must have at least 3 alphabets, such as a1b2c3d. |
| Minimum numeric characters | Enter the minimum number of numeric characters for a password.
For example: If the value of this rule is 3, the password must have at least 3 numbers, such as a1b2c3d. |
| * Minimum lowercase characters | Enter the minimum number of lowercase characters for a password. If you require the password to be in all lowercase, use the "Restricted to characters" rule instead.
For example: If the value of this rule is 3, the password must have at least 3 lowercase characters, such as a1b2c3D. |
| * Minimum uppercase characters | Enter the minimum number of uppercase characters for a password. If you require the password to be in all uppercase, use the "Restricted to characters" rule instead.
For example: If the value of this rule is 3, the password must have at least 3 uppercase characters, such as A1B2c3D. |
| Characters not allowed | Enter characters that are not allowed in the password. Do not separate any characters with a space or another delimiter, unless a space or the delimiter is a disallowed character.
For example: If you want to specify _-|{}& and * as disallowed characters, a correct value for this field is: _- |{}&* An incorrect value for this field is: _ - | { } & * or: _,-,|,{,},&,* |
| Required characters | Enter a set of characters from which at least one of the characters must be in the password. Note: Do not separate any characters with a space or another delimiter, unless a space or the delimiter is a character that must be specified. For example, when this rule is used for generating passwords, the generated password can be one of the following: (i) Contains 'a' only 11a111 (ii) Contains 'a' and 'b' a1ab11 (iii) Contains 'a', 'b', and 'c' acabcc |
| Restricted to characters | Enter the set of characters to which the password is restricted. The password must contain only these characters. Do not separate any characters with a space or another delimiter, unless a space or the delimiter is a character that must be specified.
For example: If you want to specify all lowercase letters, a correct value for this field is: abcdefghijklmnopqrstuvwxyz An incorrect value for this field is: a b c d e f g h i j k l m n o p r s t u v w x y z or: a,b,c,d,e,f,g,h,i,j,k,,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z |
| Starts with characters | Enter the sequence of characters, one of which must be the first character of the password. Note: Do not separate any characters with a space or another delimiter, unless a space or the delimiter is a character that must be specified. For example, if you want to specify that a password should start with 1 or 2 or 3 or 4, the generated password can be: 1abcde 1234de or: 432c23 |
| Repeated history length | Enter the number of passwords that are retained. This value specifies how many unique passwords must be used before a previous password can be re-used. Passwords that match any password in the history list cannot be reused. The history is updated every time the password is changed.
For example, specify a value of 7 so that the password must be changed 7 times to a different password before the old password can be reused. |
| Reversed history length | Enter the numeric value that specifies how many passwords, spelled backwards are kept in history. Passwords that match any password in the history list cannot be re-used. The history is updated every time the password is changed.
For example, specify a value of 7 so that the password must be changed 7 times to a different password before the old password (spelled backwards) can be re-used. |
| Disallow user name | Select the check box to prevent the user name to have the same value as the password. The comparison is case sensitive.
For example, if the user name is John, then the user is not allowed to set a password containing the word John. |
| Disallow user name (case-insensitive) | Select the check box to prevent the user name to have the same value as the password. The comparison is not case sensitive.
For example, if the user name is John, then the user is not allowed to set a password containing the word John, john, johN, or any variation of John as part of the password. |
| Disallow user ID | Select the check box to prevent the user ID to have the same value as a password. The comparison is case sensitive.
For example, if the user ID is JSmith, then the user is not allowed to set a password containing word JSmith. Since the comparison is case-sensitive, the user can have Jsmith, jsmith, or other variations as part of the password. |
| Disallow user ID (case-insensitive) | Select the check box to prevent the user ID to have the same value as a password. The comparison is not case sensitive.
For example, if the user ID is JSmith, then the user is not allowed to set a password containing the word JSmith, Jsmith, jsmith, or other variations as part of the password. |
| * Passwords must contain characters from three of the following four categories: 1.Uppercase letter A through Z 2.Lowercase letter a through z 3.Number 0 through 9 4.Nonalphanumeric characters: ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/ | Select the check box to enable the use of three of the mentioned four categories. |
Related topics:
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21984480