Overview
Password complexity settings in Encodify help enforce secure user authentication. Depending on the version of the system, different levels of password complexity are supported. This article outlines the behaviour of password settings prior to and following version 12.0.0, including the robust password policy now enforced by default.
Password Complexity Levels (Before Version 12.0.0)
In versions of Encodify before version 12.0.0, password complexity could be configured at three levels through the System.Properties file. These settings ensured that user passwords met basic security requirements during account creation or when passwords were changed.
The following levels were supported:
Casual Password Complexity
Minimum of 3 characters
No specific character requirements
Designed for low-security environments
Default level in versions before 12.0.0
Normal Password Complexity
Minimum of 6 characters
Must include at least one number
Suitable for standard security environments
Strong Password Complexity
Minimum of 8 characters
Must include:
Uppercase and lowercase letters
Numbers
Special characters (e.g. punctuation marks)
Password must not be similar to the username
Password Complexity Policy (Version 12.0.0 and Later)
From Encodify version 12.0.0 onwards, only the strong password policy is supported. The ability to configure password complexity or choose between levels has been removed.
To meet security standards, all user passwords must:
Be at least 8 characters long
Include:
Uppercase letters
Lowercase letters
At least one number
At least one special character (e.g. !, @, #, ?)
Does not match the username
This change ensures a consistent and secure authentication experience across all user accounts.