Authentication (Desktop)

An Authentication configuration enables you to set minimum requirements for password-based user authentication on a device. You do this when:

Complexity Requirements

Minimum Password Length Select the minimum number of characters a password must have.

History

Password Expiry Select this option to enable password expiry.
Expire Password in Enter the number of days before a password expires.
Unique Password Before Reuse Select this option to set the number of unique passwords before a previous password can be reused.
Number of Unique Passwords Before Reuse Enter the number of unique passwords before a previous password can be reused.

Enforcement

On the Enforcement tab you set conditions for locking or wiping the device.

Inactivity Before Screen Lock The number of minutes of inactivity on the device before the screen becomes locked, forcing the user to re-enter their password to gain access.

A value of zero indicates that there is no limit.

Failed Password Attempts The number of incorrect attempts to unlock the device that is allowed before the device automatically resets and is put in BitLocker recovery mode, which makes the data inaccessible but recoverable. When the user reaches the limit, the device automatically reboots and shows the BitLocker recovery page. This page prompts the user for the BitLocker recovery key.
Note: BitLocker must be enabled on the device for this setting to be enforced.