Authentication Policies Parent topic

The following table explains policies that govern authenticating local and domain user accounts.
Note
Note
Encryption Management for Apple FileVault and Encryption Management for Microsoft BitLocker do not require authentication and are not affected by authentication policies. Client, login, password, and authentication policies, or allowing the user to uninstall the Endpoint Encryption agent software only affects the Full Disk Encryption and File Encryption agents.

Endpoint Encryption Common Authentication Policy Descriptions

Category
Policy Name
Description
Value Range and Default
Local Login
Admin Password
Specify policies regarding authenticating to the local device only.
N/A
Local LoginAdmin Password
Allowed Character Types
Specify whether passwords can contain alpha, numeric, special or a combination.
Alpha, Numeric, Special
Default: All
Local LoginAdmin Password
Can Contain User Name
Specify if the user name can be contained in the password.
Yes, No
Default: Yes
Local LoginAdmin Password
Consecutive Characters Allowed
Specify the number of consecutive characters allowed in a password.
0-255
Default: 3
Local LoginAdmin Password
Minimum Length
Specify the minimum length allowed for passwords.
0-255
Default: 6
Local LoginAdmin Password
Password History Retention
Specify the number of past passwords the user is not allowed to use.
0-255
Default: 0
Local LoginAdmin Password
Require How Many Characters
Specify the number of alpha characters that must be used in a password.
0-255
Default: 0
Local LoginAdmin Password
Require How Many Lower Case Characters
Specify the number of lower case characters that must be used in a password.
0-255
Default: 0
Local LoginAdmin Password
Require How Many Numbers
Specify the number of numeric characters that must be used in a password.
0-255
Default: 0
Local LoginAdmin Password
Require How Many Special Characters
Specify the number of special characters that must be used in a password.
0-255
Default: 0
Local LoginAdmin Password
Require How Many Upper Case Characters
Specify the number of upper case characters that must be used in a password.
0-255
Default: 0
Local Login
Self Help
Specify the policies that are used for Self Help.
N/A
Local LoginSelf Help
Number of Questions
Specify the number of questions required to be answered correctly to authenticate the user.
1-6
Default: 1
Local LoginSelf Help
Personal Challenge
Specify the personal challenge question(s) used for Self Help.
1-1024
Default: N/A
Local Login
User Password
Specify the policies that are used for User Passwords.
N/A
Local LoginUser Password
Allowed Character Types
Specify whether passwords can contain alpha, numeric, special or a combination.
Alpha, Numeric, Special
Default: All
Local LoginUser Password
Can Contain User Name
Specify if the user name can be contained in the password.
Yes, No
Default: Yes
Local LoginUser Password
Change Password Every
Specify (in days) when to force a user to change their password.
1-1000000
Default: 60
Local LoginUser Password
Consecutive Characters Allowed
Specify the number of consecutive characters allowed in a password.
0-255
Default: 3
Local LoginUser Password
Minimum Length
Specify the minimum length allowed for passwords.
0-255
Default: 6
Local LoginUser Password
Password History Retention
Specify the number of past passwords the user is not allowed to use.
0-255
Default: 0
Local LoginUser Password
Require How Many Characters
Specify the number of alpha characters that must be used in a password.
0-255
Default: 0
Local LoginUser Password
Require How Many Lower Case Characters
Specify the number of lower case characters that must be used in a password.
0-255
Default: 0
Local LoginUser Password
Require How Many Numbers
Specify the number of numeric characters that must be used in a password.
0-255
Default: 0
Local LoginUser Password
Require How Many Special Characters
Specify the number of special characters that must be used in a password.
0-255
Default: 0
Local LoginUser Password
Require How Many Upper Case Characters
Specify the number of upper case characters that must be used in a password.
0-255
Default: 0
Local LoginUser Password
User Name Case Sensitive
Specify if the user name is case sensitive
Yes, No
Default: No
Network Login
Distinguished Name
Optional: Specify the distinguished name of the authentication server. If no Distinguished Name is specified, this will default to the LDAP server Default Naming Convention.
1-255
Default: N/A
Network Login
Domain Authentication
Specifies if the Windows credentials should be used to authenticate.
Yes, No
Default: No
Network Login
Domain Name
NetBIOS name of the domain for Single Sign On. Default is NetBIOS value used by the PolicyServer.
1-255
Default: N/A
Network Login
Host Name
Specify the host name. The host name can be a domain name.
1-255
Default: N/A
Network Login
Port Number
Optional: 0 = use default. Specifies the port to be used for the connection. If no port number is specified, the LDAP provider uses the default port number.
0-65535
Default: 0
Network Login
Server Type
Type of server used to authenticate client user requests.
LDAP, LDAProxy
Default: LDAP
Authentication
Remember User Between Login
Remember last used user name and display it in the authentication screen.
Yes, No
Default: Yes