Enforce user password rules

This page applies to legacy accounts. Learn more

You can specify password requirements for Trend Micro Cloud One, and other settings related to user authentication.

Specify password requirements

For greater security, enforce stringent password requirements: Use a minimum of 8 characters, letters and numbers, at least one upper case and one lower case letter, at least one non-alphanumeric character, and passwords that expire regularly.

Go to Manage Users > System Settings > Security. In the User Security section, you can change the following settings:

  • Session idle timeout: Specify the period of inactivity after which a user will be required to sign in again.
  • Maximum session duration: Maximum length of time that a user can be signed into the Trend Micro Cloud One console before they'll be required to sign in again.
  • Number of incorrect sign-in attempts allowed (before lock out): Number of times an individual user (i.e. with a specific username) can attempt to sign in with an incorrect password before they are locked out. Only a user with "Can Edit User Properties" rights can unlock a locked-out user (see Define roles for users).

    If a user gets locked out for a particular reason (too many failed sign-in attempts, for example), and no user remains with the sufficient rights to unlock that account, please contact Trend Micro for assistance.

  • Number of concurrent sessions allowed per User: Maximum number of simultaneous sessions allowed per user.

    Firefox sets session cookies on a per-process basis, and not on a per-window basis. This means that if two users want to sign in on the same computer and one is using Firefox, the other must use a different browser.

  • Action when concurrent session limit is exceeded: What happens when a user reaches the maximum number of concurrent sessions.

  • User password expires: Number of days that passwords are valid. You can also set passwords to never expire.
  • User password minimum length: Minimum number of characters required in a password.
  • User password requires both letters and numbers: Letters (a-z, A-Z) as well as numbers (0-9) must be used as part of a password.
  • User password requires both upper and lower case characters: Upper and lower case characters must be used as part of a password.
  • User password requires non-alphanumeric characters: Passwords must include non-alphanumeric characters.
  • Send email when a user's password is about the expire: Before a user's password expires, an email notification will be sent to them.

Use another identity provider for sign-on

You can also configure Workload Security to use SAML single sign-on. For details, see Configure SAML single sign-on.