Skip to content

Account Level Password Policy

Overview

The account level password policy ensures that users across multiple accounts are managed by their respective account administrators. Users will adhere to the strictest combined authentication policies from all their accounts. When an account is created, a password policy is assigned to it, and this policy applies to all users created under that account.

Authentication Policy Settings

This section specifies the authentication security level for users within an account.
Note: This policy does not apply to managed, domain federated, or social sign-on users.

Default Password Requirements

  • Password Length: Minimum of 8 characters

  • Password Complexity: Must include

    • Uppercase letters
    • Lowercase letters
    • Numbers
    • Special characters
  • Password Expiration: No expiration

  • Password History: No unique password requirement

  • Multifactor Authentication: Not required

  • Failed Login Attempts: Maximum of 5 failed attempts within 15 minutes

  • Lockout Period: 15 minutes

Customizable Password Settings

Password Length Options

  • 6 characters
  • 8 characters
  • 10 characters
  • 15 characters

Password Complexity Options

  • Numbers only (0-9)
  • Letters (A-Z) and numbers only
  • At least one letter, 1 number, and 1 special character
  • At least one uppercase letter, 1 lowercase letter, 1 number, and 1 special character

Password Expiration Options

  • No expiration
  • 90 days
  • 180 days

Password History Options

  • 0 unique passwords
  • 5 unique passwords
  • 10 unique passwords
  • 24 unique passwords

Multifactor Authentication Options

  • Not required
  • Required

Failed Login Attempts Options

  • 3 failed attempts within 15 minutes
  • 5 failed attempts within 15 minutes

Lockout Period Options

  • 15 minutes
  • 30 minutes