探花大神

Contact Us
Help Center Home > Password Policies > Create a Custom Password Policy

Create a Custom Password Policy

You can create custom password policies by defining specific password complexity, aging, lockout, and recovery email settings for different user groups. 

To create a custom password policy:

  1. Log in to the .
  2. Go to Security Management > Password Policies.
  3. Click +New to view the New Password Policy page.

    Image displays the window to create new password policies
  4. Enter a name for the policy and add a description.
  5. In the Assignments section, use the search bar to find and select the user groups you want to apply this policy to. Once these user groups are added, their members will be required to comply with the updated password policy the next time they change their password.
  6. In the Password Settings section, configure the password requirements for the users in the policy. 
    1. Min Length: Specify the minimum number of characters required for passwords.
      • Note: The minimum password length for new orgs is 12 characters by default. The minimum allowable setting is 8 characters. The maximum allowable setting is 64 characters.
    2. Password Aging: Enable specific settings for password expiration. See Configuring the Password Aging Settings for Expiration to learn more.
    3. Lockout: Select one or more requirements and then specify the numerical details of each. See Setting Password Lockout to learn more.
    4. Password Complexity: Select one or more requirements to apply to all user passwords in your org. Users won鈥檛 be able to create a password that doesn't adhere to the complexity you specify. See Setting Length, Complexity, and Originality Requirements to learn more.
    5. Password Recovery Email: Users can reset their passwords with a different email than their organization email. See Password Recovery Email to learn more.

      Password Policies Password Settings section.
  1. Once done, click Save.

Once the policy is saved, you can view it in the Password Policies page along with the default policy. 

Note:

Newly created policy requirements will only be enforced when a user initiates their next password change.

Managing Custom Password Policies

On the Password Policies page, you have the ability to create new policies, view the details of policies you've created, and also edit or delete them.

Updating a Custom Password Policy

In the Password Policies page, click the specific password policy to view details in that policy. You can update the password policy details as required and click Save

Note:

Once the policy is updated all users in the assigned user groups will follow the updated password requirement the next time they change their password.

Removing a Custom Password Policy

To remove a custom password policy:

  1. In the Password Policies page, click a specific password policy to view the details page.聽聽
  2. Click the Remove button and then click Remove when prompted.

Note:

The policy will be deleted and the next policy with higher precedence will be applied. Jump to Setting Policy Precedence to learn more. If no other policy with higher precedence is available, the default policy will be applied.

Deleting Custom Password Policies

To delete password policies:

  1. In the Password Policies page, select the custom policies that you want to delete. 

    Password Policies delete button
  2. Click the Actions dropdown. 
  3. Click Delete and then click Delete when prompted.

All selected policies will be deleted and removed from the Password Policies page.

Note:

You can鈥檛 delete the default policy. When all custom password policies are deleted, the default policy still caters to an org-wide password policy management settings.

Setting Policy Precendence

When a user is added to multiple policies with conflicting settings, the order of policy precedence determines which policy takes effect. You can set a higher precedence for restrictive or permissive policies for specific groups, while setting lower precedence for general policies.

For example, say you have three different policies:

  • General (3): Minimum 8 chars, basic complexity, remember last 5.
  • Marketing (2): Minimum 10 chars, higher complexity, remember last 10.
  • Executive (1): Minimum 15 chars, strictest complexity, remember last 20.

If Alice is in both Marketing and Executive, she follows the Executive Policy (highest precedence). Bob in Marketing follows the Marketing Policy. Charlie, a general user, follows the General Policy. Precedence ensures the most relevant policy applies when there are conflicts.

If a user is in both Marketing and Executive, the Executive policy (highest precedence) applies.

To set policy precedence:

  1. In the Password Policies page, click Policy Precedence.

    Password Policy window with Policy Precedence button highlighted.
  2. Use the ellipsis to drag each policy to change the precedence order.

    Password Policies Policy Precedence
  3. Once you have arranged the policies in desired order, click Save.

The updated precedence order will be displayed in the Policy Preferences page.

Managing Default Policy

The default policy consists of all the password configurations defined using the Password Management option in Settings > Security. The default policy defines the standard set of rules that are automatically enforced by the system when no custom policies are in place. 

Before creating a custom policy, verify the settings in the Default Policy. 

  1. In the Password Policy page, click the default policy. You will be redirected to Settings > Security > Password Management.
  2. Verify the details and modify as required. See Manage Password and Security Settings to learn more.
  3. Click Save to save the changes or Cancel to go back to Password Policies.
Back to Top

List IconIn this Article

Notebook IconLearn More

Get Started: Password Policies

Manage Password and Security Settings

FAQ: Password Policies

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case