Setting up a password policy
Note
This feature is at the Preview stage.
To set up a password policy:
-
Log in to Yandex Identity Hub using an administrator or organization owner account.
-
In the left-hand panel, click User pools and select the user pool.
-
Click Password policy and select Set password policy.
-
Under Password complexity, specify the character class settings for the password:
-
Custom: Configure the minimum length depending on the number of character classes used in the password:
- One class (
abc) - Two classes (
aBc) - Three classes (
aBc1) - Four classes (
aB#c1)
This is the preferred option because it does not require particular characters and allows users to create more memorable yet strong passwords.
- One class (
-
Required: Select the character types for the password by activating the following options:
- Lowercase Latin letters
- Uppercase Latin letters
- Digits
- Special characters, e.g.,
!@#$%^&*
In the Minimum length field, specify the minimum number of characters in the password but not less than seven.
-
-
Under Password lifetime, set the minimum and maximum password lifetime (up to 730 days) or select Unlimited.
-
Under Brute force protection, specify:
- Number of failed password attempts before lockout: From 1 to 100.
- Failed attempt interval in minutes or seconds.
- Lockout duration in minutes or seconds.