Manage Password Policy

Password policy defines the rules for password creation. The policy is applied to a user account creation and during password change. has default password policy. The administrator can modify the password rules to enforce password complexity in .
Password policy defines the rules for password creation. The policy is applied to a user account creation and during password change.
API Developer Portal
has default password policy. The administrator can modify the password rules to enforce password complexity in 
API Developer Portal
.
Configure Password Policy
Define policies to enforce users to employ strong passwords.
  1. Log in as an administrator.
  2. Click 
    Settings, 
    Authentication
    .
  3. On the 
    Authentication Schemes
     page, for the CA APIM authentication scheme type, click the down arrow in the 
    Actions
     section and select Edit. 
  4. In the Edit Authentication Scheme page, select the Password Policy option in the left navigation pane and configure the following rules:
    Setting
    Description
    Minimum Password Length
    Enter the minimum number of characters (8 through 60) required for the password.
    Maximum Password Length
    Enter the maximum number of characters (8 through 60) for the password.
    Uppercase Characters
    Set the number of uppercase letters that are required for the password.
    Lowercase Characters
    Set the number of lowercase letters that are required for the password.
    Numeric Characters
    Select this check box to set how many numbers (0-9) are required for the password.
    Special Characters
    Select this check box to set how many symbol characters are required for the password.
  5. Define the Account Lockout Policy as follows:
    • Maximum Failed Attempts
      Set the maximum number of allowed login attempts to safeguard against brute-force, or attempts to guess passwords. After the specified number of consecutive attempts, the user account is locked.
    • Account Lock Duration
      Determines the number of minutes a locked-out user account remains locked out before automatically getting unlocked.
  6. (Optional) To edit the CA APIM authentication details, select Basic Details link on the left navigation pane. Specify the provider name, provider icon, Provider description, and click Next.
  7. Note:
     By default, CA icon is set as the provider icon. Provide a different PNG file to change the icon, and ensure that the file size must not exceed 500 KB. 
  8. Click Save.