Android: Global password rules
Android
: Global password rulesThe global password rules set the device password requirements for devices with the following activation types:
- Work and personal - user privacy(Android Enterprise)
- Work and personal - full control(Android Enterprise)
- Work space only(Android Enterprise)
- MDM controls(withoutSamsung Knox)
The
MDM controls
activation type is deprecated for devices with Android
10. For more information, visit https://support.blackberry.com/community to read article 48386.Rule | Description |
---|---|
Password complexity (Global (all Android devices)) | Specify the minimum complexity level for the device password. You can choose one of the following options:
If you set the password complexity to High, and you then set the password complexity to Medium in the Work profile (all Android devices) section of the IT policy, the global setting takes precedence over the Work profile setting and users will be forced to set a password with high complexity. |
Password requirements | Specify the minimum requirements for the password. You can choose one of the following options:
|
Password complexity (Work profile (all Android devices)) | Specify the minimum complexity level for the device password. You can choose one of the following options:
If you the password complexity to Medium or low, and you have already set the password complexity to High in the Global (all Android devices) section of the IT policy, the global setting takes precedence over the Work profile setting and users will be forced to set a password with high complexity. |
Maximum failed password attempts | Specify the number of times that a user can enter an incorrect password before a device is wiped or deactivated. Devices with the "MDM controls" activation type are wiped. Devices with the "Work and personal - user privacy " and the "Work and personal - user privacy (Premium)" activation types are deactivated and the work profile removed. |
Maximum inactivity time lock | Specify the maximum number of minutes of user inactivity that must elapse before the device or work space locks. On Android devices with a work profile, the work space also locks. Users can set a shorter time period on the device. This rule is ignored if no password is required. |
Password expiration timeout | Specify the maximum amount of time that the password can be used. After the specified amount of time elapses, the user must set a new password. If set to 0, the password does not expire. |
Password history restriction | Specify the maximum number of previous passwords that a device checks to prevent a user from reusing a recent numeric, alphabetic, alphanumeric, or complex password. If set to 0, the device does not check previous passwords. |
Minimum password length | Specify the minimum number of characters for a numeric, alphabetic, alphanumeric, or complex password. |
Minimum uppercase letters required in password | Specify the minimum number of uppercase letters that a complex password must contain. |
Minimum lowercase letters required in password | Specify the minimum number of lowercase letters that a complex password must contain. |
Minimum letters required in password | Specify the minimum number of letters that a complex password must contain. |
Minimum non-letters in password | Specify the minimum number of non-letter characters (numbers or symbols) that a complex password must contain. |
Minimum numerical digits required in password | Specify the minimum number of numerals that a complex password must contain. |
Minimum symbols required in password | Specify the minimum number of non-alphanumeric characters that a complex password must contain. |
For more information about the IT policy password rules, download the Policy Reference Spreadsheet.