General password policies

We can change global user settings, such as password policies, login-failure policies, access policies, and account expiration policies. Additionally, we can override global password policies by setting individual password policies for the specified user. For example, we can change a password policy so the password policy:

• Is set only for a specific user.
• Overrides any password policy set globally for all users.

Using the Web Portal Manager or pdadmin commands, we can provide the following types of global password policies for all users:

• Minimum length allowed
• Maximum age allowed
• Minimum number of alphanumeric characters
• Minimum number of non-alphanumeric characters
• Maximum number of repeated characters
• Whether spaces are allowed

By default, passwords must meet the following criteria:

• A minimum of eight alphanumeric characters, with a minimum of one number and four letters.
• A maximum of two repeated characters.

The valid range for minimum and maximum numbers can be any number. However, a reasonable number must be used for the task we are wanting to complete. For example, a minimum password length must:

• Be long enough to protect the system.
• Not be so short as to make it easy for someone to determine your password by trying different combinations.

Parent topic: Password limitations and characters allowed in object names