All Products
Search
Document Center

CloudSSO:Configure a password policy

Last Updated:Feb 20, 2024

To protect CloudSSO users, you can configure a password policy to specify requirements such as the password length, password validity period, and number of password retries.

Procedure

  1. Log on to the CloudSSO console.

  2. In the left-side navigation pane, click Settings.

  3. In the Password Policy section, click Edit.

  4. In the Password Policy dialog box, configure the parameters.

    Parameter

    Allow modification

    Description

    Default value

    Length

    Yes

    The minimum password length. Valid values: 8 to 32 characters.

    8

    Contains Different Characters

    Yes

    The minimum number of different characters in a password. Minimum value: 0, which specifies that the number of different characters in a password is not limited. Maximum value: the value of Length. Select Enable and enter a value.

    4

    Do Not Contain Username

    Yes

    Specifies whether a password can contain the username. If you select Enable, a password cannot contain the username.

    Do Not Contain Username

    Max Age

    Yes

    The validity period of a password. Valid values: 1 to 120. Unit: days.

    90

    Do Not Repeat History

    Yes

    The previous N passwords cannot be reused. Valid values of N: 0 to 24. Select Enable and enter a value. The value 0 specifies that all historical passwords can be reused.

    Note

    Passwords that are generated before January 5, 2024 are not counted as historical passwords.

    1

    Max Attempts

    Yes

    The number of password retries. If you enter wrong passwords for the specified consecutive times, the account is locked for 1 hour. Valid values: 0 to 32. Select Enable and enter a value. The value 0 specifies that the number of password retries is not limited.

    5

    Charset

    No

    A password must contain lowercase letters, uppercase letters, digits, and special characters.

    Lower case Upper case Number Symbol

    Disable Login After Password Expired

    No

    After the password expires, the CloudSSO user cannot log on to the CloudSSO user portal. In this case, the CloudSSO user must contact the CloudSSO administrator to reset the password of the CloudSSO user.

    Deny Logon

  5. Click Ok.

Result

After you configure a password policy, all requirements that are specified in the password policy must be met when you configure a password for a new CloudSSO user or change the password of an existing CloudSSO user.

References