The password age rule ensures that users cannot use expired passwords or change their passwords too frequently.
Specify Minimum password age so that passwords cannot be changed until they are more than a certain number of days old. If a minimum password age is defined, users must wait for the specified number of days to change their passwords.
Specify Maximum password age so that passwords expire as often as necessary for your environment.
To configure the password age rule
-
Follow the steps outlined in Configuring Password Policy Rules.
-
On the Policy Rules tab, click Password Age Rule to expand the rule settings.
-
Under Password Age Rule, select the Specify password age check box, then specify the following options as required:
Option |
Description |
Minimum password age |
Specifies for how many days users must keep new passwords before they can change them. |
Maximum password age |
Specifies for how many days a password can be used before the user is required to change it. |