Special Characters ignored for Good Password Strength

sw1 · March 14, 2018, 12:22pm

Select Good Password Strength as Password Policy.
Type in: Ab123456
Password is accepted, though no special characters present
Why?!

kimcodes · March 14, 2018, 1:56pm

For Good Password Strength the requirement is to have at a minimum 3 of the 4 types of characters. The user does not have to have all 4.

In the example you provided you have 3/4. You have 1) a lower case letter, 2) an upper case letter, and 3) a number.

sw1 · March 14, 2018, 2:43pm

Ohh, didn’t recognize that hint! Thanks.
But this means there is no difference between Good and Fair setting! From the requirements description it’s very easy to overlook that only 3 of 4 types are required, and it is also a little inconsistent because on every character entry the points are marked as fulfilled, so one would expect that special characters should be present.

My feedback as user

Topic		Replies	Views
Enable all character types of the password strength policy Help password , login , password-strength , password-policy	3	4398	October 25, 2021
Password Strength Setting is incorrect Feedback password-strength , database-connections	0	12	October 7, 2024
password policies Help password , password-strength , password-policy	2	8315	July 25, 2019
Auth0 Database Password Strength policy insufficent Feedback password , password-strength , database-connections	0	321	March 4, 2024
Fair passwords are Good passwords? Help password	2	4368	March 2, 2018

Special Characters ignored for Good Password Strength

Related Topics