All Products
Search

This Product

    CloudSSO:Configure a password policy

    Document Center

    CloudSSO:Configure a password policy

    Last Updated:Mar 24, 2026

    To protect CloudSSO users, you can configure a password policy to specify requirements such as the password length, password validity period, and number of password retries.

    Procedure

    1. Log on to the CloudSSO console.

    2. In the left-side navigation pane, click Settings.

    3. On the User Settings tab, in the Password Policy section, click Edit.

    4. In the Password Policy dialog box, configure the parameters.

      Parameter

      Allow modification

      Description

      Default value

      Length

      Yes

      The minimum password length. Valid values: 8 to 32 characters.

      8

      Contains Different Characters

      Yes

      The minimum number of unique characters required in a password. A value of 0 means no limit. The maximum value is determined by the value that you specify for Length. To apply this rule, select Enable and enter a value.

      For example, if you set this parameter to 3, the password must contain at least three unique characters. Passwords such as abc or aabbccdef are valid, but abb is invalid because it contains only two unique characters (a and b).

      3

      Do Not Contain Username

      Yes

      Specifies whether a password can contain the username. If you select Enable, a password cannot contain the username.

      Do Not Contain Username

      Max Age

      Yes

      The validity period of a password. Valid values: 1 to 120. Unit: days.

      90

      Do Not Repeat History

      Yes

      The previous N passwords cannot be reused. Valid values of N: 0 to 24. Select Enable and enter a value. The value 0 specifies that all historical passwords can be reused.

      Note

      Passwords changed before January 5, 2024, are not recorded in the password history.

      1

      Max Attempts

      Yes

      The number of password retries. If you enter wrong passwords for the specified consecutive times, the account is locked for 1 hour. Valid values: 0 to 32. Select Enable and enter a value. The value 0 specifies that the number of password retries is not limited.

      5

      Charset

      No

      A password must contain lowercase letters, uppercase letters, digits, and special characters.

      Lower case Upper case Number Symbol

      Disable Login After Password Expired

      No

      After the password expires, the CloudSSO user cannot log on to the CloudSSO user portal. In this case, the CloudSSO user must contact the CloudSSO administrator to reset the password of the CloudSSO user.

      Deny Logon

    5. Click Ok.

    Result

    After you configure a password policy, all requirements that are specified in the password policy must be met when you configure a password for a new CloudSSO user or change the password of an existing CloudSSO user.

    References