Configuring password policy

How do I configure rules for users' passwords?

In the VCC Admin Portal you can configure a password policy. This policy determines the minimum strength of a user's password. A strong password can enhance the security of your VCC Admin Portal and ContactPad systems.

To configure a password policy, perform the following steps:

  1. Log in to the VCC Admin Portal and go to Configuration (within Account Settings). Configuration appears. For information on accessing Configuration, see Editing Configuration (Account Settings).
  2. Click the Passwords tab. The Passwords area appears.
  3. Provide the following information:

    SectionFieldDescription
    Password Expiration Policy

    Passwords expire

    Determines whether a user must periodically reset their password. Select the Passwords expire check box to ensure that passwords expire.

    You must set the number of days after which the password expires in the After days field.

    By default, Passwords expire is cleared.


    After days

    The number of days after which an expiring password will expire. If you configure passwords to expire, type the number of days after which the user must reset their password.

    After days must be a number between 1 and 365.

    The default value is 90 days.

    Password Complexity Requirements

    Minimum length

    The minimum number of characters in the password.

    You cannot set Minimum length to fewer than 10 characters.

    This value must exceed the sum of all minimum character requirements.

    The default value is 10.


    Minimum lower case charactersThe minimum number of lowercase letters in the password. The default value is 1.

    Minimum upper case charactersThe minimum number of uppercase letters in the password. The default value is 1.

    Minimum digitsThe minimum number of numeric characters in the password. The default value is 1.

    Minimum special charactersThe minimum number of special characters in the password. The default value is 0.


  4. Click Update Policy. The password policy is set for your account.

Now, whenever a user sets their password, the password must conform to these rules. An error message appears if the password does not contain all the required parameters. The user must reset their password in line with the password policy.

When a user's password has expired, a message appears when they try to log in. This message tells them to reset their password. Their new password must conform to the rules in the password policy.