5.1 About Passphrase Policies

A passphrase is an integral part of the security architecture of SecureLogin. It can be used to secure single sign-on data when a user authenticates to applications.

You can set passphrase policies in the Passphrase Policy properties table of the Administrative Management utility, the iManager single sign-on plug-in, or the Group Policy plug-in.

You can set a policy to restrict the format and content of passphrase answers, including length, whether numeric characters are required, and whether passphrases must be uppercase or lowercase.

For example, you could set Begin with an uppercase character to Yes and Maximum uppercase characters to 1, and Prohibit characters to Disallow spaces. You could also require all passphrase answers to start with uppercase and have the rest of the characters as lowercase.

If you set a passphrase policy, the policy must be applicable to all passphrase questions. You cannot enforce a passphrase policy similar to the one explained in the proceeding paragraph and then include a passphrase question such as “What is your mobile phone number?” because this question does not contain a combination of uppercase and lowercase and meet the other requirements.