2.10 The Passphrase Policy Properties Table

Figure 2-5 The Passphrase Policy Properties Table

Organizations and applications often have rules about the content of a passphrase, including the required number and type of characters. The Passphrase policy properties table helps the user or the administrator to create and enforce these passphrase rules through a passphrase policy.

Table 2-15 The Passphrase Policy Properties Table

Policy

Value

Description

Minimum length

Whole number

Defines the minimum length of the passphrase.

Maximum length

Whole number

Defines the maximum length of the passphrase.

Minimum punctuation characters

Punctuation characters

Defines the minimum number of punctuation characters allowed in a passphrase.

Maximum punctuation characters

Punctuation characters

Defines the maximum number of punctuation characters allowed in a passphrase.

Minimum uppercase characters

Whole number

Defines the minimum number of uppercase characters allowed in a passphrase.

Maximum uppercase characters

Whole number

Defines the maximum number of uppercase characters allowed in a passphrase.

Minimum lowercase characters

Whole number

Defines the minimum number of lowercase characters allowed in a passphrase.

Maximum lowercase characters

Whole number

Defines the maximum number of lowercase characters allowed in a passphrase.

Minimum numeric characters

Whole number

Defines the minimum number of numeric characters allowed in a passphrase.

Maximum numeric characters

Whole number

Defines the maximum number of numeric characters allowed in a passphrase.

Disallow repeat characters

No/Yes/Yes, case insensitive

Disallows the use of repeated characters, or the use of the same successive characters.

If this option is set to No, characters can be repeated. This is the default value.

When set to Yes, the same alphabetic characters in a different case are considered as different characters. For example, A and a are different.

If this option is set to Yes, case insensitive, the successive use of the same alphabetic characters in a different case is not allowed.

Disallow duplicate characters

No/Yes/Yes, case insensitive

Disallows the use of the same non-successive characters.

If this option is set to No, duplicate characters are allowed. This is the default value.

If this option is set to Yes, the same alphabetic characters in a different case are considered as different characters. For example, A (uppercase) and a (lowercase) are different.

If this option is set to Yes, case insensitive, duplication of the same alphabetic characters in a different case is not allowed.

Disallow sequential characters

No/Yes/Yes, case insensitive

Disallows the use of successive characters in an alphabetical order.

If this option is set to No, sequential characters are allowed. This is the default value.

If this option is set to Yes, sequential characters in a different case are considered as non-sequential. For example, a and b and non-sequential.

If this option is set to Yes, case insensitive, sequential characters in different cases is disallowed.

Begin with an uppercase character

No/Yes

Enforces the use of an uppercase alphabetic character as the beginning character of a passphrase.

The default value is No.

When set to Yes, all other policies that indicate that a passphrase must begin with a particular character or in a specific manner are disabled.

IMPORTANT:Only one type of character can be designated as the first value of a passphrase.

End with an uppercase character

No/Yes

Enforces the use of an uppercase letter at the end of a passphrase.

The default value is No.

If this option is set to Yes, all other policies that indicate that a passphrase must end with a particular character or in a specific manner are disabled.

Prohibited characters

Keyboard characters

Defines a list of characters that cannot be used in a passphrase.

NOTE:There is no need of a separator in the list of prohibited characters. For example, @#$%&

Begin with any Alpha character

No/Yes

Enforces the use of an alphabetic character at the beginning of a passphrase.

The default value is No.

If this option is set to Yes, it automatically disables all other policies that specify what the first character of the passphrase should be.

Begin with any number

No/Yes

Enforces the use of a numeric character as the first character of the passphrase.

The default value is No.

If this option is set to Yes, it automatically disables all other policies that specify what the first character of the passphrase should be.

Begin with any symbol

No/Yes

Enforces the use of a symbol character as the first character of the passphrase.

The default value is No.

If this option is set to Yes, it automatically disables all other policies that specify what the first character of the passphrase should be.

End with any Alpha character

No/Yes

Enforces the use of an alphabetic character as the last character of the passphrase.

The default value is No.

If this option is set to Yes, it automatically disables all other policies that specify what the passphrase should end with.

End with any number

No/Yes

Enforces the use of a numeric character as the last character of the passphrase.

The default value is No.

If this option is set to Yes, it automatically disables all other policies that specify what the passphrase should end with.

End with any symbol

No/Yes

Enforces the use of a symbol character as the last character of the passphrase.

The default value is No.

If this option is set to Yes, it automatically disables all other policies that specify what the passphrase should end with.