Password policies configuration (Windows policy)

With the Password policies configuration you define requirements for the passwords of Windows user accounts.

Note Password complexity rules (for example length, number of uppercase and lowercase letters) for Windows computers are fixed and cannot be set by a Sophos Mobile policy. For details see Windows password complexity rules.
Note Password policies can’t be assigned to Windows computers if the following conditions are both met:
  • There are other local users configured on the device in addition to the user that is enrolled with Sophos Mobile.
  • One or more of these other users are not allowed to change their password.

Setting/Field

Description

Maximum number of failed attempts

The number of failed login attempts to enter the correct password before the device is wiped.

Enter a value between 1 and 999, or 0 for no restriction.

Time in minutes until the device is locked

The time period (in minutes) after which the device is locked if it has not been used. The user can unlock the device.

Enter a value between 1 and 999, or 0 for no restriction.

Password history

The number of old passwords that are remembered and compared with new ones. When the user defines a new password, it is not accepted if it matches a previously used password.

Enter a value between 1 and 999, or 0 for no restriction.

Maximum password age in days

The number of days after which users must change their password.

Enter a value between 1 and 730, or 0 for no restriction.