Defining rules for a password policy

You can define and configure rules for the password policy in the Application. Each rule has parameters for specifying one or more policy definitions (password change, password length or password reset).

Each rule you define must belong to one of the predefined rule types. The following table lists some of the common rules that you can create, the rule type they must belong to and the associated interface that must be implemented:

Rule

Rule Type

Interface

Login

Password Rule Type Login

IPasswordPolicyForLogin

Policy assignment

Password Rule Type Assignment

IPasswordPolicyForAssignment

Password length

Password Rule Type Password Change

IPasswordPolicyForPasswordChange

Password strength

Password Rule Type Password Change

IPasswordPolicyForPasswordChange

Password reset

Password Rule Type Password Reset

IPasswordPolicyForReset

Failed login attempts

Password Rule Type Login

IPasswordPolicyForLogin

User authentication

Password Rule Type Secret Anwser

IPasswordPolicyForSecretAnswers

Each rule type has an associated interface, which is implemented by the class you specify when creating the rule.

You can define any number of rules for a given rule type and each rule definition can contain any number of rule parameters.

A rule is configured when you: