Password Policy
UDMG implements a comprehensive global password policy that is configured through the system's Configuration File. The Configuration File has predefined defaults that Admins can modify as needed. The password settings help enforce stronger security by ensuring passwords meet certain complexity criteria.
The policy is enforced across all Domains and applies to three password fields on both creation and update.
- Users with Login Method: Standard
- Accounts with Login Method: Standard
- Secondary Domain - Initial Domain Admin
The password policy configuration is defined within the security block in the server.hcl Configuration File. The UDMG Server must be restarted after the Configuration File is changed.
Example Configuration
security {
password {
minLength = 10
minUpperCase = 1
minLowerCase = 1
minNumbers = 1
minSymbols = 1
}
}
Parameters
All parameters are located within the password block nested inside the security block of the Configuration File.
| HCL Argument Name | Description | Value Type | Default Value |
|---|---|---|---|
security.password.minLength | Minimum password length. | number | 8 |
security.password.minUpperCase | Minimum number of uppercase characters in password. | number | 0 |
security.password.minLowerCase | Minimum number of lowercase characters in password. | number | 0 |
security.password.minNumbers | Minimum number of numbers in password. | number | 0 |
security.password.minSymbols | Minimum number of symbols in password. | number | 0 |