Account Level Password Policy
Overview
The account level password policy ensures that users across multiple accounts are managed by their respective account administrators. Users will adhere to the strictest combined authentication policies from all their accounts. When an account is created, a password policy is assigned to it, and this policy applies to all users created under that account.
Authentication Policy Settings
This section specifies the authentication security level for users within an account.
Note: This policy does not apply to managed, domain federated, or social sign-on users.
Default Password Requirements
-
Password Length: Minimum of 8 characters
-
Password Complexity: Must include
- Uppercase letters
- Lowercase letters
- Numbers
- Special characters
-
Password Expiration: No expiration
-
Password History: No unique password requirement
-
Multifactor Authentication: Not required
-
Failed Login Attempts: Maximum of 5 failed attempts within 15 minutes
-
Lockout Period: 15 minutes
Customizable Password Settings
Password Length Options
- 6 characters
- 8 characters
- 10 characters
- 15 characters
Password Complexity Options
- Numbers only (0-9)
- Letters (A-Z) and numbers only
- At least one letter, 1 number, and 1 special character
- At least one uppercase letter, 1 lowercase letter, 1 number, and 1 special character
Password Expiration Options
- No expiration
- 90 days
- 180 days
Password History Options
- 0 unique passwords
- 5 unique passwords
- 10 unique passwords
- 24 unique passwords
Multifactor Authentication Options
- Not required
- Required
Failed Login Attempts Options
- 3 failed attempts within 15 minutes
- 5 failed attempts within 15 minutes
Lockout Period Options
- 15 minutes
- 30 minutes