Password complexity rules

For any account you add, you can also choose whether or not you want the Privileged Access Service to manage the account password. If you select Manage this credential, the Privileged Access Service automatically resets the password after the account and system are added and each time the account is checked in.

All managed passwords generated by the Privileged Access Service consist of at least one upper case letter, one lower case letter, one number, and one special character regardless of the system type. For Windows systems, the following additional password rules apply:

  • Minimum password length: 12 characters.
  • Maximum password length: 32 characters.
  • Supported special characters: !$%&()*+,-./:;<=>?[\]^_{|}~

You should keep in mind that only the Privileged Access Service will know the managed password being generated and stored. You should not select this option if you don’t want the Privileged Access Service to manage the password for the account.