19.2 Creating a Password Policy

By creating password policies, you can:

Set password restrictions, for example, define the minimum and maximum length of passwords
Set challenge question restrictions
See rules that are associated with a password policy

Note:

In an environment in which LDAP synchronization is enabled, you must ensure one of the following:

Password policies set on Oracle Identity Manager must be more restrictive than password policies set on the LDAP server.
Password policies set on Oracle Identity Manager must match the password policies set on the LDAP server.

To create a password policy:

In the Password Policy page, from the Actions menu, select Create. Alternatively, click Create on the toolbar.
In the Policy Name field, enter the name of the password policy.
In the Description field, enter a short description of the password policy.

In the Policy Rules tab, specify value to set the rules for the password policy. For a description of each field in the Policy Rules tab, see "Setting Password Policy Rules".

Note:

You can leave the fields blank in the Policy Rules tab, and click Apply to save the password policy. You can later open the password policy and set the policy rules by following the instructions in "Setting Password Policy Rules".

In the Challenge Options section, select Enable Challenge Policy Support to enable configuring challenge policy options. For a description of each field in the Challenge Options section, see "Setting Challenge Options".
Click Apply.

Note:

A password policy is not applied during the creation of an Oracle Identity Manager user through trusted source reconciliation.