To protect CloudSSO users, you can configure a password policy to specify requirements such as the password length, password validity period, and number of password retries.
Procedure
Log on to the CloudSSO console.
In the left-side navigation pane, click Settings.
In the Password Policy section, click Edit.
In the Password Policy dialog box, configure the parameters.
Parameter
Allow modification
Description
Default value
Length
Yes
The minimum password length. Valid values: 8 to 32 characters.
8
Contains Different Characters
Yes
The minimum number of different characters in a password. Minimum value: 0, which specifies that the number of different characters in a password is not limited. Maximum value: the value of Length. Select Enable and enter a value.
4
Do Not Contain Username
Yes
Specifies whether a password can contain the username. If you select Enable, a password cannot contain the username.
Do Not Contain Username
Max Age
Yes
The validity period of a password. Valid values: 1 to 120. Unit: days.
90
Do Not Repeat History
Yes
The previous N passwords cannot be reused. Valid values of N: 0 to 24. Select Enable and enter a value. The value 0 specifies that all historical passwords can be reused.
NotePasswords that are generated before January 5, 2024 are not counted as historical passwords.
1
Max Attempts
Yes
The number of password retries. If you enter wrong passwords for the specified consecutive times, the account is locked for 1 hour. Valid values: 0 to 32. Select Enable and enter a value. The value 0 specifies that the number of password retries is not limited.
5
Charset
No
A password must contain lowercase letters, uppercase letters, digits, and special characters.
Lower case Upper case Number Symbol
Disable Login After Password Expired
No
After the password expires, the CloudSSO user cannot log on to the CloudSSO user portal. In this case, the CloudSSO user must contact the CloudSSO administrator to reset the password of the CloudSSO user.
Deny Logon
Click Ok.
Result
After you configure a password policy, all requirements that are specified in the password policy must be met when you configure a password for a new CloudSSO user or change the password of an existing CloudSSO user.