The local user password policy is a set of rules and restrictions on the format and expiration of the local user passwords. The password policy applies only to local users that you created from the VMware Identity Manager admin console.

About this task

The password policy can include password restrictions, a maximum lifetime of a password, and for password resets, the maximum lifetime of the temporary password.

The default password policy requires six characters. The password restrictions can include a combination of uppercase, lowercase, numerical, and special characters to require strong passwords be set.

Procedure

  1. In the administration console, select Users & Groups > Settings
  2. Click Password Policy to edit the password restriction parameters.

    Option

    Description

    Minimum length for passwords

    Six characters is the minimum length, but you can require more than six characters. The minimum length must be no less than the combined minimum of alphabetic, numeric, and special character requirements.

    Lowercase characters

    Minimum number of lowercase characters. Lowercase a-z

    Uppercase characters

    Minimum number of uppercase characters. Uppercase A-Z

    Numerical characters (0-9)

    Minimum number of numerical characters. Base ten digits (0-9)

    Special characters

    Minimum number of non-alphanumeric characters, for example & # % $ !

    Consecutive identical characters

    Maximum number of identical adjacent characters. For example, if you enter 1, the following password is allowed: p@s$word, but this password is not allowed: p@$$word.

    Password history

    Number of the previous passwords that cannot be selected. For example, if a user cannot reuse any of the last six passwords, type 6. To disable this feature, set the value to 0.

  3. In the Password Management section, edit the password lifetime parameters.

    Option

    Description

    Temporary password lifetime

    Number of hours a password reset or forgot password link is valid. The default is 168 hours

    Password lifetime

    Maximum number of days that a password can exist before the user must change it.

    Password reminder

    Number of days before a password expiration that the password expiry notice is sent.

    Password reminder notification frequency

    After the first password expiry notice is sent, how frequently reminders are sent.

    Each box must have a value to set up the password lifetime policy. To not set a policy option, enter 0.

  4. Click Save.