Version: 3.3

Password Policy

UDMG allows Admins to define a Password Policy that enforces complexity and security requirements for User and Account passwords within a Domain.

Password Policies are configured at the Domain level through the UDMG Admin UI and are enforced consistently across all password operations, including creation, update, and reset.

info

Newly created Domains use the system-defined default Password Policy values described in Field Descriptions.

Before You Begin

Supported Authentication Methods

The Password Policy applies only to locally managed credentials:

Users with Standard authentication
Accounts with Standard authentication

The Password Policy does not apply to externally managed identities, including LDAP- or SSO-provisioned Users and Accounts. Passwords for these identities are validated by their external identity providers.

Enforcement Scope

The Password Policy is enforced during the following operations:

User creation and update
Account creation and update
Password resets in the UDMG Admin UI
Password changes through the Web Transfer Client (WTC)

Configuring Password Policy

warning

Password Policy changes take effect immediately and apply to all future password operations (see Enforcement Scope).

Only Admins can configure password policies. To do so, follow these steps:

From the Sidebar, click General > Settings.
Click the Security - Settings card.
Click Edit.
Configure the Password Policy fields using the Field Descriptions table as a guide.
Click Update.

Field Descriptions

Name	Description	Specifications	Required
Minimum Password Length	Minimum total number of characters required for a valid password.	Default value: `8`. Cannot exceed `72` due to hashing limitations.	Yes
Maximum Password Length	Maximum total number of characters allowed for a valid password.	Default value: `72`. Cannot exceed `72` due to hashing limitations.	Yes
Minimum Number of Uppercase Characters	Minimum uppercase letters (`A-Z`) required in the password.	Default value: `1`. Cannot exceed `72` due to hashing limitations. Set to `0` to disable.	Yes
Minimum Number of Lowercase Characters	Minimum lowercase letters (`a-z`) required in the password.	Default value: `1`. Cannot exceed `72` due to hashing limitations. Set to `0` to disable.	Yes
Minimum Number of Numbers	Minimum numeric digits (`0-9`) required in the password.	Default value: `1`. Cannot exceed `72` due to hashing limitations. Set to `0` to disable.	Yes
Minimum Number of Symbols	Minimum of special characters (e.g.: `! @ # $ %`) required in the password.	Default value: `1`. Cannot exceed `72` due to hashing limitations. Set to `0` to disable.	Yes
Maximum Number of Repeating Characters	Maximum number of consecutive identical characters allowed in a password. For example, if set to `3`, `aaa` is allowed but `aaaa` is rejected.	Default value: `3`. Must be less than the Minimum Password Length. Set to `0` to disable.	Yes
Password History Size	Number of previously used passwords that are retained and cannot be reused.	Default value: `3`. Set to `0` to disable.	Yes

Viewing the Password Policy

To view the current Password Policy, follow these steps:

From the Sidebar, click General > Settings.
Click the Security - Settings card.
Extensions appear listed under the PASSWORD POLICY section.

Before You Begin​

Supported Authentication Methods​

Enforcement Scope​

Configuring Password Policy​

Field Descriptions​

Viewing the Password Policy​