Overview

A Password Policy is a set of rules that encourage the use of strong passwords for ensuring added data security. inSync supports password policies for the users and administrators. You can define a Password Policy such that:

• Strong passwords are mandated. A password is strong if it is at least 12 characters long and contains at least one alphabet [a-z, A-Z], one numeric character [0-9], and one special character.
• A given number of preceding passwords used to login cannot be reused
• The number of login attempts is defined. When this limit is reached, inSync locks the account for an hour.
• Mandate password change at regular intervals.

Enable Password Policy for users

To enable Password Policy for users

1. On the inSync Management Console menu bar, click  > inSync Settings.
2. Click the Password Policy tab.
3. Under the Password Policy Settings For Users area, click Edit. The Password Policy Settings For Users window appears.

   

4. Provide the appropriate information for each field.

   Field	Action
   Enable Password Policy	If you want to enable the Password Policy for the users, select this check box. Additional fields appear.
   Enforce Strong Password	If you want to enforce a strong Password Policy, select this check box. A strong password contains: Minimum 12 and maximum 32 characters A combination of alphanumeric and special characters Alphanumeric characters include numbers and upper-case and lower-case letters A strong password is hard to guess for people with malicious intent and secures the login experience. Note: Enforce strong Password Policy is, by default, enabled in inSync GovCloud environment.
   Cannot reset password to last	Type the number of previous passwords that the user cannot use. For example, if you enter 3, then the users cannot set their new password to the current password and the previous two passwords. To allow the users to use any of their last passwords except the current password, type 0. Note: In inSync GovCloud environment, by default, the user cannot reset their password to last 24 passwords.
   Minimum lifetime for password (Applicable in inSync GovCloud environment only)	Type the number of days that you want a password to be used before the user can change it. The possible value range is between 1-60 days. Recommendation Set Minimum lifetime for password age to a value of 1 day. Setting the number of days to 0 allows immediate password changes.
   Max. invalid login attempts	Type the maximum number of login attempts. User's account is locked after the number of invalid login attempts exceeds the number you specify here.
   Passwords expire after every	Type the number of days after which the user must reset the password. The recommended value range is 1 to 60 days. Note:  For inSync Cloud, the password expiration period should be between 0 and 99, where 0 = Never. For inSync GovCloud, the password expiration period should be between 1 and 60. Minimum lifetime for password should be less than password expiration period.

5. Click Save.