Configure the required strength for passwords

  • Versão de lançamento: Australia
  • Atualizado 12 de mar. de 2026
  • 2 min. de leitura

    • The password that a user defines must meet certain requirements — for example, it must contain at least 12 characters, it must include a numeral, and so on. You can configure the requirements as needed for your organization.

    Antes de Iniciar

    Role required: password_reset_admin

    Por Que e Quando Desempenhar Esta Tarefa

    The base system includes example credential stores with various password requirements. You can modify password requirements and provide users with hints for creating a password. The default requirements are:
    • At least eight characters
    • At least one uppercase and one lower case letter
    • At least one numeral
    Nota:
    In addition to configuring password strength requirements, you can configure several other settings for the credential store, as described in Configure the connection to a credential store for the Password Reset processes.

    Procedimento

    1. Navigate to All > Password Reset > Credential Stores.
    2. Select the credential store in the list and then configure the following settings:
      Field Description
      Password rule hint Specify the text that appears on the password reset page to help the user to create a password that meets all requirements. The Password rule script enforces the requirements.
      Nota:
      The Password Reset Windows Application supports newline characters in the hint. Other formatting is not supported (bold, underline, hyperlink, and so on).
      Password rule Specify the client script that validates the new password that the user enters. The script is invoked when the user enters a new password and clicks Password Reset. You can use the script to enforce password strength/complexity requirements.
      Enable Password Strength Select the check box to:
      • Display the text box for the Strength rule script so you can update the script.
      • Display the graphical Password Strength bar to the user while the user changes or resets the password.
      Nota:
      The Password Reset Windows Application does not support Password Strength.
      Strength rule This text box appears only if you select Enable Password Strength.

      Specify the client script that calculates the strength/complexity of the password that the user enters. The script is invoked when the user begins to enter a new password during the reset process.

      Default settings:
      • Selected for local ServiceNow credential stores
      • Not selected for other credential stores
      Nota:

      • To guide the user during the reset process, the system displays a graphical bar labeled Password Strength under the New password field.

        Password strength indicator
      • The Password Reset Windows Application does not support Password Strength.
    3. Click Submit.
      You should test the connection to a credential store after you configure a new credential store or when users experience problems that might involve the connection.
    4. Navigate to Password Reset > Credential Stores and then open the credential store.
    5. In the header bar, click Save and Test Connection.
      A progress page displays the result of the test.