Administrator can create a password policy for local users.
Please note that minimal password length policy property can not be disabled and minimal password length can’t go below 6 characters. The rest of policy properties are quite self-explaining.
Policy will be applied to password change in any possible way: edit user record by administrator, edit own profile by user itself, creation or update user using API. If non-conformant password is met in such operations, operations will be rejected. Errors will be shown on the top of UI form. In case of API usage, errors will be written to the log file.
When administrator changes the password policy it’s not applied to existing users. Thus, even after policy edit database may retain users with passwords that do not correspond to the policy. The policy will be applied when administrator or user itself will make attempt to change password (both via UI form or API).
Post your comment on this topic.