Password Policy
A password policy represents a set of guidelines designed to enforce a higher level of security. Protege systems enable you to define your own password policy that other users of the system are required to follow.
Configuration
- Minimum Password Length: Defines the character length required for a password. If this option is activated and a minimum of eight letters are required, the password test is invalid and the password testtest is valid.
- Minimum Number Of Uppercase Characters: Defines the minimum number of uppercase characters required for a password. This includes all accented French, Spanish, Polish and Estonian characters. If this option is activated and a minimum of three capital letters are required the password test is invalid and the password TeST is valid.
- Minimum Number Of Digits: Defines the minimum number of digits required for a password. If this option is activated and a minimum of three digits are required the password t35t is invalid and t&$t!ng is valid.
- Minimum Number of Special Characters: Defines the minimum number of ASCII characters (@$,<>#:`~!-+%'"|\.(){}=?_*&) required for a password. If this option is activated and a minimum of three special characters are required the password t&$t is invalid and the password t&$t!ng is valid.
- Compare Against Username: Passwords are checked against the username to ensure that they are unique. This option splits the username by space, period, comma, hyphen or underscore to ensure that no parts of the username (more than two characters) exist in the password. If this option is activated and your username is test.operator the passwords testing and operator1234 are invalid.