How to Specify User Password Rules and Constraints

You can specify user password expiration rules and other related constraints. One rule may rely on another rule, so read the associated UI help text thoroughly. Hover your mouse over the associated “i” for the help text information.

If you do not make any configuration changes, the default rules are enforced.

To specify user password rules and constraints:

1. Log in to Admin Portal.

2. Click Access > Policies.

3. Select the relevant policy set or create a new one.

4. Click User Security Policies > Password Settings.

5. Specify the user password related rules and constraints in the Password Requirements, Display Requirements, Additional Requirements, Password Age,and Capture Settings areas. Explanations for each option are available in the associated UI help.

   It is also useful to review the user self-service options. See Configure Password Reset Self-Service Options

   

6. Click Save.

Configuring user password change options

This user password change option is independent of those available in User Security Policies > Self Service > Password Reset.

To configure user password change options:

1. Log in to Admin Portal.

2. Click Access > Policies.

3. Select the relevant policy set or create a new one.

4. Click User Security Policies > User Account Settings.

5. Select Yes in the Enable user to change their passwords drop-down list.

   

   If this policy is set to No and you use the Maximum password age policy to set an expiration date for the password, users will not be able to resettheir password. Instead, an administrator will have to reset the password for them.

6. (Optional) Select from the Authentication Profile drop-down list to specify the authentication mechanism users must provide to change their password.

   See Creating Authentication Profiles for authentication profile information.

7. Click Save.