Skip Navigation

iOS
and
iPadOS
: Password rules

Name	Description	Activation types	Default	Possible values
Password required for device	Specify whether a user must set a device password.	MDM controls User privacy (with profile management) User privacy - User enrollment	Not selected
Allow simple value	Specify whether the device password can contain sequential or repeated characters, such as DEFG or 3333. Depends on: Password required for device	MDM controls User privacy (with profile management)	Selected
Require alphanumeric value	Specify whether the device password must contain both letters and numbers. Depends on: Password required for device	MDM controls User privacy (with profile management)	Not selected
Minimum passcode length	Specify the minimum number of characters that the device password must contain. Depends on: Password required for device	MDM controls User privacy (with profile management)		Minimum value: 1 character Maximum value: 16 characters
Minimum number of complex characters	Specify the minimum number of non-alphanumeric characters that the device password must contain. Depends on: Password required for device	MDM controls User privacy (with profile management)	Minimum value: 1 character Maximum value: 4 characters
Maximum passcode age	Specify the maximum number of days that the device password can be used. After the specified number of days elapse, the password expires and a user must set a new password. Depends on: Password required for device	MDM controls User privacy (with profile management)		Minimum value: 1 day Maximum value: 730 days
Maximum auto-lock	Specify the maximum value that a user can set for the auto-lock time, which is the number of minutes of user inactivity that must elapse before a device locks. If set to "None," all supported values are available on the device. If the selected value is outside of the range supported by the device, the device will use the closest value it supports. Depends on: Password required for device	MDM controls User privacy (with profile management)	None	None 1 min 2 mins 3 mins 4 mins 5 mins 10 mins 15 mins
Passcode history	Specify the maximum number of previous passwords that a device checks to prevent reuse. Depends on: Password required for device	MDM controls User privacy (with profile management)		Minimum value: 1 password Maximum value: 50 passwords
Maximum grace period for device lock	Specify the maximum value that a user can set for the grace period for device lock, which is the amount of time that a device can be locked before a password is required to unlock it. If set to "None," all values are available on the device. If set to "Immediately," the password is required immediately after the device locks. Depends on: Password required for device	MDM controls User privacy (with profile management)	None	None Immediately 1 min 5 mins 15 mins 1 hr 4 hrs
Maximum failed password attempts	Specify the number of times that a user can enter an incorrect password before a device is wiped. Depends on: Password required for device	MDM controls User privacy (with profile management)		Minimum value: 2 times Maximum value: 10 times
Allow password changes (supervised only)	Specify if a user can add, change, or remove the device password. Minimum OS version: 9.0.0	MDM controls	Selected

iOS and iPadOS IT policy rules