Password Policies
A password policy helps ensure that people accessing your Senitron cloud instance are using best practices when creating passwords. As an organization admin, you can use a password policy to require all of your managed users to meet a minimum password strength or set a password expiration period.
By default if you don't set a password policy, Senitron accounts are required to have a password length of 8 to 100 characters.
Set a password policy
To set a password policy
- go to Tenant Admin > Users > Security
- Set The password policy attributes are described below.
- When you're finished, click Update password policy.
Minimum password strength
You can choose the minimum strength that all passwords should comply with. Note that Senitron account uses an entropy score to evaluate password strength so there aren't simple rules, however these examples give some guidance:
Password strength Example
| Password strength | Example |
|---|---|
| Weak | asdf |
| Fair | ryti* |
| Good | ry2iy*Z |
| Strong | qwe&8d&dj |
| Very strong | DFG65&fj90x |
See our tips for strong passwords below.
Password expiry
By default, passwords do not expire. However, you can set an expiry period if required, just add the numbers of days you want your password to expire by.
Choose when to apply changes
Once the administrator has selected the password strength and/or password expiry period, they have the ability to save and apply their password policy either immediately or the next time a user changes or sets their password.
- Immediately – users will be logged out their current session and will need to set a new password at next log in regardless of whether their existing password already met the new password policy
- Next time user changes their password – their current session will not be terminated, but they will be prompted to set a new password at next log in.