Disallow Personal Data Issues when Email Prefix is One Character

Problem statement

When Disallow Personal Data in Password is toggled on in Password Policy, and the email prefix of the user is one character (e.g., x@example.com), any passwords containing the character ‘x’ will be rejected. This affects users on account creation, especially if they are generating passwords.


It is a known limitation of this feature and single character should be excluded in the checks.


This is expected behavior. The recommendation is to avoid using the character in the password when a user’s email address prefix only contains one character.