Password rules by authentication method
The following table summarizes the password rules and settings for each supported IBM SmartCloud® Notes® client.
Authentication method | Password rules | Password expiration1 | Password changes |
---|---|---|---|
Cloud service account identity and password |
|
|
|
SAML Federated Identity | Controlled by company | Controlled by company | Controlled by company |
Cloud service account identity and application password | 16 characters (non-case sensitive) |
|
|
NRPC | In service-only environments, and in hybrid environments that do not use policy security settings to configure password requirements, IBM® Notes ID passwords must be at least eight characters and have a password quality of 8, on a password quality scale of 0 (weakest) to 16 (strongest). |
|
|
1 While it may seem that requiring passwords to expire provides more security, most security experts believe the opposite is true. Password expiration often leads to the use of simpler, more easily-guessed passwords, and to users writing down passwords to remember them. A better policy is to use more complex password phrases that do not expire, whenever possible. In addition to providing better security, this policy also reduces the number of help desk calls generated from users who forget their ever-changing passwords.