Password policies are a common way for businesses to encourage strong user passwords.

In the interest of data security, a password policy might impose specific requirements, such as: 

  • a minimum number of characters
  • the use of upper case letters
  • the use of numeric characters


Customer Self Service features 'Password Rules' as a means of implementing password policy. There are two steps in configuring the functionality:

  1. Create a password rule.
  2. Apply the password rule at Role level.

Step-by-step guide

To Create a Password Rule:

  1. Login as an Administrator. 
  2. Navigate to 'Accounts' --> 'Password Rules' (/zpasswordrule.aspx).
  3. Click 'New'
  4. Update the field values as follows: 
    1. Password Rule Code - a unique code for the rule set.
    2. Password Rule Description - a general description of the rule set. 
    3. Days Before Expiry - the number of days the password will be valid, before a Force Change is issued.
    4. Miniumum Characters - the minimum number of characters required.
    5. Uppercase Characters - the minimum number of upper case characters required.
    6. Lowercase Characters - the minimum number of lower case characters required.
    7. Numeric Characters - the minimum number of numeric characters required.
    8. Cycles Before Reuse - the number of new passwords the user must cycle through before being allowed to reuse a previous password.
  5. Click 'OK' to save. 
    Password Rules Maintenance


To Assign a Password Rule at Role Level: 

  1. Login as an Administrator.
  2. Navigate to 'Accounts' --> 'Role Management' (/zRoles.aspx).
  3. Select the required role via radio button.
  4. Click the 'Functions' tab.
  5. Click 'Modify'.
  6. Locate the flag labelled 'Password Rule Code'.
  7. Select the required password rule from the drop-down list.
  8. Click 'OK' to save.
    Assigning a Password Rule


There is also a flag to indicate whether Password Rules should be enforced at the point of new user registration. If the setting is toggled on, the role associated with self-registered users will dictate which password rule is applied. 
(This flag is available on versions 3.69.03 and later)

To Apply Password Rules on User Registration:

  1. Login as an Administrator.
  2. Navigate to 'Settings' --> 'Settings' (/zSettings.aspx).
  3. On the 'General' tab, locate the flag 'Apply Password Rules to Registration'.
  4. Tick the box to enable the functionality.
  5. Click the 'Update' button at the bottom of the page to save. 


Related help

© Copyright 2001-2023 Commerce Vision Pty Ltd. Use of this site signifies your acceptance of Commerce Vision’s Terms & Conditions. CV Connect, the Commerce Vision logos, and other Commerce Vision marks are assets of Commerce Vision Pty Ltd.