Configuring a Password Policy

You can configure a robust password policy, including rules for password expiration, reuse, and complexity, by configuring the following engine variables. See the engine variables overview for information on working with engine variables.

When configuring the settings described below, you can use the sdb-admin tool (sdb-admin update-config ...) so that configuration changes are written to the .cnf file and will persist across any server reboots.

For example, to set passwords to expire after two weeks:

sdb-admin update-config --all --set-global --key "password_expiration_seconds" --value "1209600"