Passcode

Important: With the release of Samsung Knox 3.4, Samsung has deprecated Knox Workspace containers. As such, SOTI MobiControl v15.0 and on does not support the creation, modification or deployment of Samsung Knox containers to devices. If you have devices that were assigned a Samsung Knox container in a previous version of SOTI MobiControl and you have since upgraded to SOTI MobiControl v15.0 or later, the Knox container will remain on the device. However, you will be unable to modify the existing container or add new containers to devices.

Learn more about how the Samsung Knox Workspace container deprecation may affect you at Samsung Knox Workspace Container Deprecation

The Passcode profile configuration enables you to manage device-side, password-based user authentication for Samsung KNOX devices.

Complexity Requirements

Minimum Password Quality Specify the password quality users must use when creating a password. This can either be alphanumeric or a smart card.
Minimum Number of Complex Characters Specify how many complex characters are needed for a password. These include ! @ # $ % ^ & *.
Maximum Character Occurrences Specify how many times a character can be used in the password.
Maximum Character Sequence Length Specify the length characters can be used alphabetically.
Minimum Number of Characters Changed during Password Change Specify the amount of characters that must be changed when changing a password.

History

Maximum Password Age Specify how long the user password can be used on the Android device before it must be changed.
Password History Specify how many passwords will be remembered until the user can use that password again.

Policy

Maximum Failed Password Attempts Specify the amount of times a user can enter a wrong password.
Password Lock Delay Specify how long the device will stay unlocked while off. The device will automatically lock again after the expired time.
Password Visible Allows you to make passwords visible.
Forbidden Strings Allows you to specify passwords that are forbidden. Clicking the text box will bring up a dialog where you can enter more than one string.

For example, if you do not want your users to have "qwerty123" as their password, add it to the forbidden string section.

Note: Forbidden strings are checked only when a new password is created by the device user. For example, when adding new forbidden strings, any devices using passwords that already contain the new forbidden string will not be flagged as a violation. However, if a user attempts to change their password and uses a forbidden string, they will be prompted to choose a different password. All other authentication policy requirements are checked against existing and new passwords.