02d. Password Policies

Password policies provide additional security measures when users create passwords. Click Setup, Security then Password Policies to access this functionality.

Specify the number of previously used passwords that will be stored with the Password History Length option and use the Minimum Password Length option to specify the minimum number of characters a password must contain.

Enable the No Password Repetition option to ensure users do not reuse old passwords. This option is made more effective when the Password History Length option is set to a higher value as the new password can be compared against a greater number of previous entries. To set how long, in days, a password will last, enter a value in the Maximum Password Life text box.

Alternatively, enable the Password Never Expires option to stop passwords expiring or the Temporary Password option to ensure users must reset their password next time they log in. Once either option is enabled, click the > icon to specify who it will apply to. All previously created users and groups are displayed in the Available Users/Groups list and the currently selected entries are displayed in the Current Membership list. Use the Left and Right arrows to move the entries into the required list.

There are also multiple options available to enforce passwords to be as diverse and secure as possible. Enable any variety of the following options to reduce the chance of passwords being guessed: Mixed Alphanumeric and Non-Alphanumeric Password, Mixed Case Password, Password Must Contain Special Characters, Password Must Not Be a Car Registration, Password Must Not contain Month or Day, Password Must not Contain Username.

To save any changes made, click Save. To discard changes, click Cancel.