We want to enforce below password policy criteria for Dollar Universe logins.

• Enforce passwords to be made up of at least 12 characters and contain characters from at least some permissible special character set.
• Prohibit passwords from being the same as the system account 
• Change of passwords
• Secure usage of passwords from offline attack and transmission over wire on secure layers.

Component: Dollar Universe UVMS

Release: 6.x, 7.x

Dollar Universe doesn't enforce any password policy rather allow integration with enterprise standard solutions like LDAP, which enable organizations to manage/enforce password policies across numerous product in an organization.

• Enforce passwords to be made up of at least 12 characters and contain characters from at least some permissible special character set.
• Prohibit passwords from being the same as the system account 
• Change of passwords

Above password policy requirements i.e. password complexity, permissible characters sets and enforcing change of password is managed at LDAP and Dollar Universe enable integration to LDAP. Please refer the guide for DU Integration with LDAP.

• Secure usage of passwords from offline attack and transmission over wire on secure layers.

For password transmission over secure channel integrate LDAP over SSL as mentioned in the document SSL configuration.

• With LDAP integration Dollar Universe doesn't store password and offline attack is out of context, the authorization is happening via LDAP and hence Dollar Universe doesn't display/store password.
  
  
• The LDAP integration will also allow you to lock the User account on X attempts.
  
  
• Password policy and login user profile attributes for internal users