MDM Password Policy for Windows

A password is required to secure the device by preventing unauthorized access to the device features and files. But sometimes, simple passwords can be guessed easily and the device can be unlocked. Password policies force users to use a strong password on their device thus making it even more secure. You can configure password from Policies tab.

  1. Create a new policy or select an existing one from Policies tab.
  2. Select Password from Windows Settings.
Settings Supported OS Description
Allow simple value PCs & tablets:
8.1   10

Phones:
8.1   10

Allow users to set simple passwords (without special characters or numbers) on their devices.
Require alphanumeric value PCs & tablets:
8.1   10

Phones:
8.1   10

Select the type of password that the user can set on their Windows device. Alphanumeric password forces the user to provide an alphanumeric password while numeric password force users to set a numeric one. Select users can choose to leave it to the users.
Minimum passcode length PCs & tablets:
8.1   10

Phones:
8.1   10

The minimum number of characters in the password. The value can be from 4 to 18.
Minimum complex characters Set the minimum number of complex characters that the password should have. 1 and 2 are the available values.
Maximum passcode age in days PCs & tablets:
8.1   10

Phones:
8.1   10

The maximum days a passcode should work. Set a value from 0 to 730 days for this field. If the users have not changed the passcode within this period, the device will be locked down and they can use the device only after a new passcode is set. To disable this option, select 0.
Auto lock PCs & tablets:
8.1   10

Phones:
8.1   10

The device will be locked automatically if it is idle for the time (in minutes) set. Available values are from 0 to 999. Selecting 0 will disable auto lock.
Passcode history PCs & tablets:
8.1   10

Phones:
8.1   10

Let the device store up to 50 recently used passcodes. The saved passcodes are not allowed to be used again while changing the passcode. Select 0 to disable this option.
Failed attempt before wipe PCs & tablets:
8.1   10

Phones:
8.1   10

The number of wrong passcode attempts after which the device will be wiped automatically. The device will be reset to factory settings and all data (contacts, files, calendars etc.) will be deleted. The permitted number of attempts are 0 to 999. Select 0 to disable this option. In Windows 10 PCs and tablets, this option works only if BitLocker protection is enabled by the Organization. The device enters a recovery mode instead of being wiped. From here, the access to the device can be restored by using a 48-digit recovery code provided by the Organization.

Associate Policy to Windows Devices

There are several methods to get a configured APN pushed to a device, two of which are explained here.

Method 1

  1. If you are inside policy configuration screen, go to Policy Targets.
  2. Click on + Add Devices to add a device, or select a user, device group or user group from the left pane.

Method 2

  1. If you are on the policy list screen, check a policy.
  2. From Manage, select Associate Targets and select the devices.
  •  
  •  
  •  
  •  
  •  
Desktop or Mobile, Hexnode MDM Got You Covered!
FREE 30-DAY TRIAL