{
  "id": "password-complexity-rules",
  "title": "Configure password complexity rules",
  "url": "https://redis.io/docs/latest/operate/rs/7.8/security/access-control/manage-passwords/password-complexity-rules/",
  "summary": "Enable password complexity rules and configure minimum password length.",
  "content": "\nRedis Enterprise Software provides optional password complexity rules that meet common requirements.  When enabled, these rules require the password to have:\n\n- At least 8 characters\n- At least one uppercase character\n- At least one lowercase character\n- At least one number\n- At least one special character \n\nThese requirements reflect v6.2.12 and later. Earlier versions did not support numbers or special characters as the first or the last character of a password. This restriction was removed in v6.2.12.\n\nIn addition, the password:\n\n- Cannot contain the user's email address or the reverse of the email address.\n- Cannot have more than three repeating characters.\n\nPassword complexity rules apply when a new user account is created and when the password is changed.  Password complexity rules are not applied to accounts authenticated by an external identity provider.  \n\n## Enable password complexity rules\n\nTo enable password complexity rules, use one of the following methods:\n\n- Cluster Manager UI:\n\n    1. Go to **Cluster \u003e Security \u003e Preferences**, then select **Edit**.\n\n    1. In the **Password** section, enable **Complexity rules**.\n\n    1. Select **Save**.\n\n- [Update cluster]() REST API request:\n\n    ```sh\n    PUT https://[host][:port]/v1/cluster\n    { \"password_complexity\": true }\n    ```\n\n## Change minimum password length\n\nWhen password complexity rules are enabled, passwords must have at least 8 characters by default.\n\nIf you change the minimum password length, the new minimum is enforced for new users and when existing users change their passwords.\n\nTo change the minimum password length, use one of the following methods:\n\n- Cluster Manager UI:\n\n    1. Go to **Cluster \u003e Security \u003e Preferences**.\n    \n    1. Click **Edit**.\n\n    1. In the **Password** section, enable **Complexity rules**.\n\n    1. Set the number of characters for **Minimum password length**.\n\n        \n\n    1. Click **Save**.\n\n- [Update cluster]() REST API request:\n\n    ```sh\n    PUT https://[host][:port]/v1/cluster\n    { \"password_min_length\": \u003cinteger between 8-256\u003e }\n    ```\n\n## Deactivate password complexity rules\n\nTo deactivate password complexity rules, use one of the following methods:\n\n- Cluster Manager UI:\n\n    1. Go to **Cluster \u003e Security \u003e Preferences**, then select **Edit**.\n\n    1. In the **Password** section, turn off **Complexity rules**.\n\n    1. Select **Save**.\n\n- [Update cluster]() REST API request:\n\n    ```sh\n    PUT https://[host][:port]/v1/cluster\n    { \"password_complexity\": false }\n    ```\n",
  "tags": ["docs","operate","rs"],
  "last_updated": "2026-04-01T08:10:08-05:00"
}