HOW TO: Modify the generated password length or complexity
Active Roles includes the capability to generate Active Directory passwords for user accounts. By default, these generated passwords will respect the minimum character requirement specified in the Default Domain Password Policy, but it may be desired to increase this character count.
The behaviour of Password Generation functionality is controlled by a policy. The default policies are:
Configuration/Policies/Administration/Builtin/Built-in Policy - Password Generation for Undo Deprovisioning
In order to modify the settings in the above policies, it is necessary to create a new policy that leverages the built-in Generate User Password - PowerShell script module.
NOTE: Due to Defect ID 91662, copies of the above policies will not function properly. Instead, it is necessary to create new policies and then link the built-in Generate User Password - PowerShell script module.
In the Active Roles Console, as an Active Roles Admin, expand Configuration | Policies | Administration
Select a new or existing policy container
Using the menu at the top of the screen, select Action | New | Provisioning Policy
Choose an appropriate name and then click Next | Script Execution | Next and select the Builtin | Generate User Password - PowerShell script module
Set the desired parameters and then click Next
Add the desired scope and then click Next | Finish
After configuring and linking the new policies as desired, remove the linkages to the built-in policies.