Password Policy

Administrators can set password policy in the Admin Console. You can:

• Set Authentication Method
• Set Lock Out Policy
• Set Password Constraints

Set authentication method

1. From the AMS Admin Console, click System Settings.
2. Click Password Policy. The Password Policy page appears.
3. Select Use AMS-managed passwords for all users to use AMS authentication, Use Authentication Controller for Windows authentication or Use Single Sign On With SAML 2.0 for Single Sign on support.
4. Select how many hours to Cache Passwords For. This value should never be less than 1, and a value of 8-24 is more typical.

Set password lock out policy:

1. From the AMS Admin Console, click System Settings.
2. Click Password Policy. The Password Policy page appears.
3. Set Maximum Attempts. This determines how many attempts a user will be allowed to attempt to log into AMS until they are locked out.
4. Set the minutes after which to Reset Attempts After. After this period of time, a user that has exceeded the maximum number will have their failed attempts purged.
5. Set the Lockout Period. This setting determines how long the system will lock a user out after they have exceeded the number of failed Maximum Attempts.

Set password constraints:

1. From the AMS Admin Console, click System Settings.
2. Click Password Policy. The Password Policy page appears.
3. Set the Minimum Length for a password.
4. Set the number of months and changes for the password to remain Unique Within. This prevents users from reusing old passwords within the specified iterations and period of time.