Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry UEM 12.13
  3. Administration
  4. Managing device features
  5. Managing devices with IT policies
  6. Setting device password requirements
  7. Setting Android password requirements
  8. Android: Global password rules

Android
: Global password rules

The global password rules set the device password requirements for devices with the following activation types:
  • Work and personal - user privacy
     (
    Android Enterprise
    )
  • Work and personal - full control
     (
    Android Enterprise
    )
  • Work space only
     (
    Android Enterprise
    )
  • MDM controls
     (without 
    Samsung Knox
    )
The 
MDM controls
 activation type is deprecated for devices with 
Android
 10. For more information, visit https://support.blackberry.com/community to read article 48386.
Rule
Description
Password requirements
Specify the minimum requirements for the password. You can choose one of the following options: 
  • Unspecified - no password required
  • Something - the user must set a password but there are no requirements for length or quality
  • Numeric - the password must include at least one number
  • Alphabetic - the password must include at least one letter
  • Alphanumeric - the password must include at least one letter and one number
  • Complex - allows you to set specific requirements for different character types
Maximum failed password attempts
Specify the number of times that a user can enter an incorrect password before a device is wiped or deactivated.
Devices with the "MDM controls" activation type are wiped.
Devices with the "Work and personal - user privacy " and the "Work and personal - user privacy (Premium)" activation types are deactivated and the work profile removed.
Maximum inactivity time lock
Specify the maximum number of minutes of user inactivity that must elapse before the device or work space locks. On 
Android
 devices with a work profile, the work space also locks. Users can set a shorter time period on the device. This rule is ignored if no password is required.
Password expiration timeout
Specify the maximum amount of time that the password can be used. After the specified amount of time elapses, the user must set a new password. If set to 0, the password does not expire.
Password history restriction
Specify the maximum number of previous passwords that a device checks to prevent a user from reusing a recent numeric, alphabetic, alphanumeric, or complex password. If set to 0, the device does not check previous passwords.
Minimum password length
Specify the minimum number of characters for a numeric, alphabetic, alphanumeric, or complex password.
Minimum uppercase letters required in password
Specify the minimum number of uppercase letters that a complex password must contain.
Minimum lowercase letters required in password
Specify the minimum number of lowercase letters that a complex password must contain.
Minimum letters required in password
Specify the minimum number of letters that a complex password must contain.
Minimum non-letters in password
Specify the minimum number of non-letter characters (numbers or symbols) that a complex password must contain.
Minimum numerical digits required in password
Specify the minimum number of numerals that a complex password must contain.
Minimum symbols required in password
Specify the minimum number of non-alphanumeric characters that a complex password must contain.
For more information about the IT policy password rules, download the Policy Reference Spreadsheet.