Password policy
A password policy is a set of rules designed to improve security by establishing strict password requirements for your users. These rules are enforced on all users in your account.
Password policy settings
Password policy controls password settings for all users on your account. You can configure the following password settings:
- Minimum password length
- Minimum uppercase characters
- Minimum numeric characters
- Minimum special characters
Valid special characters: @ # $ % ^ & * ( ) - _ = + ’ " { } | ; : < > , . / ? ! - Password history restriction - Prevents users from entering previously used passwords when updating their passwords.
- Password Expiration - The number of days before a password expires and a new one must be set.
Default policy
The default password policy contains the following requirements:
- Minimum eight characters in length
- Minimum one number character
- Minimum one uppercase character
- Minimum one special character
- One password history restriction
- Password never expires
Recommended policy
For your convenience, we offer a recommended policy. This is a stricter policy than the default policy and uses the following settings:
- Minimum 12 characters in length
- Minimum two number characters
- Minimum two uppercase characters
- Minimum one special character
- Two password history restrictions
- Password never expires
Custom policy
Select this option to configure your own password policy. The strength indicator will update as you adjust each policy setting. We strongly recommend using a policy with a minium strength of Strong.
Manage the password policy
Managing the password policy requires the Manage Accounts permission. Only an account admin has the permissions required to modify this setting.
Use the following steps to manage the password policy for your account:
- Log in to iQ Tag Management.
- In the user admin menu, select Manage Password Policy.
- Modify the password settings and click on Update Password Settings.
The changes take effect immediately.
Password expiration
Tealium account passwords do not expire by default. However, depending on your security requirements, you can configure how long a password can be valid before needing to be reset.
To configure the password expiration time for your account, set the expiration time to a number of days greater than zero.
Change to a stricter password policy
If you set a stricter password policy, you may break some users’ current passwords. This forces those users to reset their passwords if they don’t satisfy the new password requirements. As an admin, you cannot change passwords for other users.
Failed logins
Note that after five unsuccessful login attempts, your account is temporarily locked for five minutes.
This page was last updated: January 7, 2023