# RapidIdentity Product Guide: New UI

• Syntax

The four available tabs on this screen are General, Password Syntax, Restricted Passwords, and Password Screening. Each tab has a different set of options for System Administrators to use to define policies surrounding the types of passwords that users must create.

###### General Tab
Table 71. Password Policy Manager - General Tab

Section

Field

Description

General

Name

Give the policy a name that makes the policy easy to identify.

Description

This will be the information displayed to the user when they are prompted to create a password. Administrators can use basic HTML formatting to ensure the message is easy to read and understand.

Enabled

Select this checkbox to enable the policy for all applicable users.

Default Policy

Select this checkbox to ensure this policy is the default.

Affected Users

Access Control

Choose how or if to limit access to the policy. More information on RBAC and ABAC filtering is available in Configuring Module Visibility. This field defaults to None.

### Note

This section only appears when the selected policy is not the default policy.

Allow Password Reset to Attribute Value

Select this checkbox to enable users to use various attributes as passwords.

Select this checkbox to allow passwords governed by this policy to be reset to random values when performing delegated or self-service password reset.

Select this checkbox to enforce whether the "User Must Change Password At Next Login" option is automatically selected when delegated administrators or self-service users change the password for users associated with this policy.

Section

Field

Description

General

Define the minimum and maximum number of characters required for the current Password Policy.

### Note

Setting the minimum length to 0 means RapidIdentity will not enforce a minimum length, and setting the maximum length to 0 means RapidIdentity will not enforce a maximum length for new passwords for users within this policy.

If both values are greater than zero, the Minimum Length character count must be less than or equal to the Maximum Length character count.

Regular Expression for Allowed Characters

Insert a string to enforce further password complexity rules as needed. This can force include or force exclude certain characters at the creation of password for users that qualify for this policy.

Character Sets to Meet

Number of Character Sets as defined in the next section that the password must meet to match the requirements of this policy.

Pressing this button changes the Password Length Minimum to 7 and Character Sets to Meet to 3. These are the default Password Complexity requirements as set by the AD industry standard.

Character Sets

Uppercase Letters

Define the minimum and maximum number of Uppercase Letters (A-Z) that must be included.

Lowercase Letters

Define the minimum and maximum number of Lowercase Letters (a-z) that must be included.

Numbers

Define the minimum and maximum number of Numbers (0-9) that must be included.

Special Characters

Define the minimum and maximum number of Special Characters (!"#\$%&'()*+,-./:;=?@[\]^_`{|}~) that must be included.

Unicode Characters

Define the minimum and maximum number of Unicode Characters that must be included.

Section

Field

Description

Match by Text

Case Sensitive Match

Check this box to enforce case sensitivity against any Restricted Passwords defined below.

Full Match

Check this box to restrict any phrases that fully match any of the Restricted Passwords defined below.

Click +Add Another to include any words and phrases that are to be restricted from use in a user's password.

Match by Regular Expression

Click +Add Another to include any regular expressions that are to be restricted from use in a user's password.

Match by Attribute Value

Case Sensitive Match

Check this box to enforce case sensitivity against any Restricted Attribute Values defined below.

Full Match

Check this box to restrict any Attributes that fully match any of the Restricted Passwords defined below.

Check this box to enforce AD industry standard complexity requirements when using Attributes to build a user's password.

Click +Add Another to include any Attributes that are to be restricted from use in a user's password.

Section

Field

Description