All Products
Search

This Product

    CloudSSO:Configure a password policy

    Document Center

    CloudSSO:Configure a password policy

    Last Updated:Feb 20, 2024

    To protect CloudSSO users, you can configure a password policy to specify requirements such as the password length, password validity period, and number of password retries.

    Procedure

    1. Log on to the CloudSSO console.

    2. In the left-side navigation pane, click Settings.

    3. In the Password Policy section, click Edit.

    4. In the Password Policy dialog box, configure the parameters.

      Parameter

      Allow modification

      Description

      Default value

      Length

      Yes

      The minimum password length. Valid values: 8 to 32 characters.

      8

      Contains Different Characters

      Yes

      The minimum number of different characters in a password. Minimum value: 0, which specifies that the number of different characters in a password is not limited. Maximum value: the value of Length. Select Enable and enter a value.

      4

      Do Not Contain Username

      Yes

      Specifies whether a password can contain the username. If you select Enable, a password cannot contain the username.

      Do Not Contain Username

      Max Age

      Yes

      The validity period of a password. Valid values: 1 to 120. Unit: days.

      90

      Do Not Repeat History

      Yes

      The previous N passwords cannot be reused. Valid values of N: 0 to 24. Select Enable and enter a value. The value 0 specifies that all historical passwords can be reused.

      Note

      Passwords that are generated before January 5, 2024 are not counted as historical passwords.

      1

      Max Attempts

      Yes

      The number of password retries. If you enter wrong passwords for the specified consecutive times, the account is locked for 1 hour. Valid values: 0 to 32. Select Enable and enter a value. The value 0 specifies that the number of password retries is not limited.

      5

      Charset

      No

      A password must contain lowercase letters, uppercase letters, digits, and special characters.

      Lower case Upper case Number Symbol

      Disable Login After Password Expired

      No

      After the password expires, the CloudSSO user cannot log on to the CloudSSO user portal. In this case, the CloudSSO user must contact the CloudSSO administrator to reset the password of the CloudSSO user.

      Deny Logon

    5. Click Ok.

    Result

    After you configure a password policy, all requirements that are specified in the password policy must be met when you configure a password for a new CloudSSO user or change the password of an existing CloudSSO user.

    References