Password complexity rules define the configuration details, best practices, and default values for the Password policy settings. The password complexity rules apply only to the embedded administrator account and internal user accounts (see User groups and permissions). When the password policy changes, Dynatrace prompts all users to update their passwords the next time they sign in.
The Password policy settings force passwords to meet a series of strong-password guidelines. You can configure passwords to meet the following requirements:
The password contains a minimum number of alphanumeric characters.
The password contains a minimum number of characters from the following categories:
A through Z, with diacritic marks)a through z, sharp-s, with diacritic marks)0 through 9)~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/) Currency symbols such as the Euro or British Pound aren't counted as special characters for this policy setting.Dynatrace enforces complexity requirements when users change or create passwords.
The following table lists the actual and effective default policy values. Default values are also listed on the Password policy page. The value range for the policy properties is between 8 and 128 for the Minimum password length property and between 0 and 128 for other policy properties.
| Policy property name | Default value | Recommended |
|---|---|---|
Minimum password length |
|
|
Minimum number of uppercase characters |
|
|
Minimum number of lowercase characters |
|
|
Minimum number of digits |
|
|
Minimum number of non-alphanumeric characters |
|
|
Since 2013, the "NIST Special Publication 800-63. Appendix A" advises to include in passwords irregular capitalization, special characters, and at least one numeral. Change passwords at least every 90 days. Most systems follow this guidance, and many standards that businesses must comply with incorporate it.