This document describes how to set sub-user login password rules to regulate sub-users’ login password character types, length, and validity period.
After the login password expires, sub-users will not be able to log in via other login methods and must reset the password.
Log in to the CAM console and select Users > User Settings in the left sidebar.
Set the password rule.
- This password rule applies to the password of a sub-user created via a custom method. For example, if you set the rule to "Should contain at least 10 characters of digits and lowercase letters", the password of the sub-user you created should comply with this rule.
- This rule does not apply to sub-users that log in via WeCom or collaborators.
|Character type||Select the characters that must be used in the password. You can choose numeric characters, uppercase letters, lowercase letters, special characters (except for spaces)||At least one item must be selected|
|Length||Restrict the minimum password length||The length can be set between 8 - 32 characters|
|Validity period||Restrict the password validity period. When the password expires, it must be reset||The period can be set between 0 - 365 days|
|Duplication restrictions||Restrict the usage of old passwords||Between 0 - 24 recent passwords can be restricted from being reused.|
|Retry restrictions||Restricts the number of times that the wrong password can be entered. If the number of times the wrong password is entered exceeds the limit set, the login will be locked for 1 hour automatically.||This can be set to 0-10 times/hour.|
Click Apply Changes to set the configured password rules. You can set the password of a sub-user according to the new rules. When sub-users reset passwords, they must do so according to the password rules you have set.
For the security of your account, sub-users will not be prompted by the rule when they are resetting the password. Sub-users with the cam:GetPasswordRules permission and the root account can go to User Settings in the console and click Download current password rules in Note to pass the current password rule to the user that needs it, as shown in the following figure: