Skip to main content

Password Rule and Policy

Item

Options

Function

Minimum password length

8 (Default)

Input a value between 8 and 20.

This value indicates minimum number of characters, which is part of the rules to specify a valid password.

Password expiration period

0 (Default)

Input a value between 0 and 365.

This value indicates the number of days that a password is expired and needs to be changed. If it is set to 0, the password will never expire.

Password expiration warning period

0 (Default)

Input a value between 0 and 365.

This value indicates the number of days that you will receive a warning about the expiration of the password. If it is set to 0, you will never receive the warning.

Minimum password change interval

0 (Default)

Input a value between 0 and 240.

This value indicates the number of hours that must elapse before a password is changed. The value specified for this setting cannot exceed the value specified for the Password expiration period. If it is set to 0, the password can be changed immediately.

Minimum password reuse cycle

0 (Default)

Input a value between 0 and 10.

This value indicates the minimum number of times a unique password must be set before reusing a previous password. If it is set to 0, the password can be reused immediately.

Maximum number of login failures

5 (Default)

Input a value between 0 and 100.

This value indicates the number of login attempts that can be made with an incorrect password before the user account is locked out. The account is locked out for the time specified in Lockout period after maximum login failures. If it is set to 0, accounts will never be locked. The failed login counter is reset to zero after a successful login.

Lockout period after maximum login failures

2 (Default)

Input a value between 0 and 2880.

This value indicates the number of minutes that a locked-user must wait to attempt to login. Entering a valid password cannot even unlock the account during the lockout period. If it is set to 0, accounts will not be locked out even if the Maximum number of login failures is exceeded.