This policy is only applicable to STS authentication and non-IWA environments.
You can force all users to choose a strong, secure password using the Enforce Password Policy option. Selecting this option ensures that when a user changes their password, their new password must conform to the rules of the policy.
The standard password policy rules are:
-
A minimum of eight (8) characters in length
-
At least one (1) uppercase letter (A-Z characters in English)
-
At least one (1) lowercase letter (a-z characters in English)
-
At least one (1) number (0-9)
-
At least one (1) special character, such as ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/
-
If the password is 8 or 9 characters in length, it must meet 3 of the above rules. If the password has 10 or more characters, it must meet 2 of the above rules.
-
You can select the Enforce Password Policy option in system options. For more information, see Configure the system options.