All managed passwords generated by the Privileged Access Service consist of at least one upper case letter, one lower case letter, one number, and one special character regardless of the system type. For Check Point systems, the following additional password rules apply:
- The password length is 6 to 128 characters
- The password complexity policy states how many character classes should be included. For example, characters in the password are divided into upper case alphabetic (A-Z), lower case alphabetic (a-z), digits (0-9), and all other characters. Therefore, a password complexity value of 3 allows passwords like abc123! or abcDEF5, but not abcXYZ.
- The password can include special characters, but the first character cannot be an asterisk (*) or the user will not be able to log on to the operating system.
If the first character of the password for the expert mode user is an asterisk (*), a factory reset will be required. Therefore, the default password profile for Check Point Gaia systems does not include the asterisk (*) as a supported special character. If you clone the default profile or use another profile to create a custom password profile, you should be aware of the restrictions on special characters for the specific operating system you are using.