Apple password policy analysis tool
| Setting | Description | Value |
|---|---|---|
| Require passcode on device | If true, forces the user to enter a PIN. | true |
| Allow simple value | Permits users to use sequential or repeated characters in their passcodes or passwords — for example, “3333” or “DEFG”. | true |
| Require alphanumeric value | Requires that the passcode or password contain at least one letter and one number. | false |
| Minimum length | Specifies the minimum number of characters a passcode or password can contain. | 0 (default) |
| Minimum number of complex characters | Specifies the number of characters (such as $ and !) that the passcode or password must contain. | 0 (default) |
| Maximum passcode or password age | Requires users to change their passcode or password at the interval you specify. | none (default) |
| Maximum Auto-Lock | If the device isn’t used for the period of time you specify, it automatically locks. | none (default) |
| Passcode or password history | A device refuses a new passcode or password if it matches a previously used passcode or password. You can specify how many previous passcodes or passwords are remembered and compared. | 1 (default) |
| Maximum grace period for device lock | Specifies how soon a device can be unlocked again after use, without prompting again for the passcode or password. | 0 minutes (default) |
| Maximum number of failed attempts | Forces a device to be erased after a specified number of incorrect attempts. | none (default) |
Based on the maximum auto-lock time of none and grace period of zero, we estimate that users will enter their password 3 times per day
which is the same as in the default policy.
Based on selected password complexity rules it will take users 9.6 seconds to enter their passsword, the same as with the default policy. Assuming 250 working days in a year and 3 password entries per day (calculated above) this will result in 2 hours spent entering passwords, the same as in the default policy.
As with the default policy, users will not be locked out of their account based on number of incorrect password attempts.
Based on selected password complexity rules, it will take 11.2 seconds to create a new password. The policy does not require users to create additional passwords so there is no resulting productivity cost.
Overall the policy will result in an average productivity loss of 2 hours which is the same as the default policy