Minimum Days Between Change
|
Minimum number of days between password changes, which must be less than the (Maximum Days Between Change minus the Warn Days Before Expire). Default is 0.
|
Maximum Days Between Change
|
Maximum number of days between password changes. Default is 90.
|
Warn Days Before Expire
|
Number of days to warn a user before their password expires, which must be less than (Maximum Days Between Change minus Minimum Days Between Change). Default is 7.
|
Disable Days After Expire
|
Number of days after a password expires to disable a user account. You may type never or a number > or equal to 0. Default is never.
|
Minimum Length of Password
|
Minimum password length required. Default is 9. Can be set to a value 9–31.
|
Minimum Number of Character Classes
|
Minimum number of character classes required. Default is 4 and is not configurable. Character classes include and must have at least :
- One lowercase character (a-z)
- One uppercase character (A-Z)
- One numeric character (0-9)
- One special characters ($, %, #, +, and so on)
|
Lowercase Character Requirement
|
Enable or disable the requirement for a least one lowercase character. Default is disabled.
|
Uppercase Character Requirement
|
Enable or disable the requirement for a least one uppercase character. Default is disabled.
|
Minimum numeric character
|
Enable or disable the requirement for a least one numeric character. Default is disabled.
|
Minimum special character
|
Enable or disable the requirement for a least one special character. Default is disabled.
|
Max Consecutive Character Requirement
|
Enable or disable the requirement for a maximum of three repeated characters. Default is enabled.
|
Enforce password reuse history
|
Specify the number of remembered passwords. The range is 0–24. Default is 6.
|
Maximum login tries
|
Specify the maximum number of login tries before a mandatory lock is applied to a user account. This limit applies to all user accounts, including sysadmin. A locked user cannot log in while the account is locked. The range is 4–20. Default is 4.
|
Unlock timeout (seconds)
|
Specify how long a user account is locked after the maximum number of login tries. When the configured unlock timeout is reached, a user can re-attempt to log in. The range is 120–3,600 seconds. Default is 120 seconds.
|