Configuring Password Policy | NuWave Technologies Documentation Center

The Password Policy is defined in a YAML text file. The policy to use is set with the --password-policy startup option. For example:

run server / <run-options> / --password-policy pwdpol <other-options>

In this case, PWDPOL is the name of the Password Policy YAML configuration file.

This is an example policy file:

YAML

PasswordPolicyConfig:
  monitorInterval: 15        # config file monitor frequency (in seconds)
  loginOptions:
    maxFailures: 5           # maximum attempts before account locked
  passwordOptions:
    minLength: 8
    maxLength: 12            # Absolute maximum is 64
    special: 1               # nbr required special characters ; 0 = not required
    digit: 1                 # nbr required digits
    upper: 1                 # nbr required uppercase characters
    lower: 1                 # nbr required lowercase characters
    firstMustBeLetter: false # first character must be alpha
  version: 1

Element	Value	Notes
`monitorInterval`	How often, in seconds, to check for a change in the YAML configuration file.	Values: `5` - `65535` Default: `5`
`maxFailures`	The allowed maximum number of login failures before the account is disabled (locked). Disabled accounts must be manually enabled.	Values: `1` - `60` Default: `5`
`minLength`	The minimum length for a password.	Values: `1` - `64` Default: `1`
`maxLength`	The maximum length for a password.	Values: `1` - `64` Default: `64` Must be greater than `minLength`.
`special`	Number of required special characters.	`Values: 1 - 64.` `Default: 0`
`digit`	Number of required numeric digits.	`Values: 1 - 64.` `Default: 0`
`upper`	Number of required uppercase alphabetic characters.	`Values: 1 - 64.` `Default: 0`
`lower`	Number of required lowercase alphabetic characters.	`Values: 1 - 64.` `Default: 0`
`firstMustBeLetter`	The first character of the password must be an uppercase or lowercase alphabetic character.	Values: `true`, `false`. Default: `false`