Configure a password policy

Last updated:2021-10-29 17:57:25

This topic describes how to configure password policies to ensure your account security. You can specify password complexity requirements, such as the password length, validity period, history check policy, and elements.

Password policies apply only to Identity and Access Management (IAM) users.

  1. The login session of a Kingsoft Cloud account is valid for 12 hours.
  2. If you enter the wrong passwords for three consecutive times, the Kingsoft Cloud account will be locked for 30 minutes. In this case, you can change the password or wait 30 minutes.

Procedure

  1. Log in to the IAM console.

  2. In the left navigation pane, choose Setting > Security Settings.

  3. On the Security Settings page, click Change in the Password Strength Settings section.

  4. In the Password Strength Settings panel, set the required parameters.

    • Password Length: the length of the password. The password must be 8 to 32 characters in length.
    • Password Validity Period: the validity period of the password, in days. We recommend that you set this parameter. Valid values: 90 to 365. If the password expires, you need to change it after login.
    • Password History Check Policy: the policy for preventing IAM users from reusing previous N passwords. We recommend that you set this parameter. Valid values: 1 to 12.
    • Required Elements in Password: the types of characters required in the password, including Lowercase Letters, Uppercase Letter, Numbers, and Symbols. We recommend that you select at least two of them.
    • Action After Password Expires: specifies whether to allow IAM users to log in to the console after their passwords expire. If you select Deny Logon, IAM users cannot log in after their passwords expire. You need to reset their passwords by using your Kingsoft Cloud account or as an IAM user with administrator permissions.
    • Frequency of Logon Attempts with Incorrect Password within One Hour: the maximum number of password retries. Valid values: 1 to 32. If an IAM user enters the wrong passwords for the specified consecutive times, the account is locked for 1 hour.
  5. Click OK.

Result

The password policy applies to all IAM users of your Kingsoft Cloud account.

Did you find the above information helpful?

Unhelpful
Mostly Unhelpful
A little helpful
Helpful
Very helpful

What might be the problems?

Insufficient
Outdated
Unclear or awkward
Redundant or clumsy
Lack of context for the complex system or functionality

More suggestions

0/200

Please give us your feedback.

Submitted

Thank you for your feedback.

问题反馈