Configure Password Policies in WorkEasy.team

  • Published on Jan 26, 2026
  • 1 minute(s) read
Prev Next

This article is for administrators who manage authentication and security settings in WorkEasy to add a password policy. It explains what each field means, and how to use a custom regular expression and error messages for validation.

  1. Go to Global Settings. Under General Settings, select Password Policies.

  2. Click Add.

    • Name: a unique name for the policy.

    • Effective Date: date and time when the policy becomes active.

    • Password History Depth: number of previous passwords the system remembers to prevent reuse.

    • Reset in Days: required rotation interval.

    • Min Length and Max Length: allowed character range for passwords.

    • Min Numbers Required: minimum count of numeric digits.

    • Min Capitals Required: minimum count of uppercase letters.

    • Min Symbols Required: minimum count of symbols.

    • Eligible Symbols: set of allowed special characters.

    • Custom Regular Expression: optional regex to enforce advanced rules.

    • Error Message: text shown to users when a password fails validation.

Example based on the screen

The following values mirror the example shown in the image and are suitable for a strong, user friendly baseline:

  • Password History Depth: 5

  • Reset in Days: 90

  • Min Length: 8

  • Max Length: 25

  • Min Numbers Required: 1

  • Min Capitals Required: 1

  • Min Symbols Required: 1

  • Eligible Symbols: ~!@#$%^&*()_-+=[]|{}<>?,.;:

What custom regular expression is

Regex (regular expression) is a pattern-matching language used to validate or search text. In password policies, regex enforces rules like minimum length, required characters, or forbidden patterns.If you use a custom regular expression, make sure the Error message explains the rule in plain language.

Best practices for using regex in password policies

  • Keep it simple: Avoid overly complex rules that frustrate users.

  • Explain clearly: Always pair regex with a plain-language error message.

  • Focus on essentials: Enforce length, variety of character types, and prevention of weak patterns.

  • Don’t over restrict: Allow a wide range of symbols and avoid forcing arbitrary sequences.

  • Test before rollout: Validate that your regex accepts strong passwords and blocks weak ones.

Custom regular expression example

This regex requires at least 12 characters including an uppercase letter, a lowercase letter, a number, and a special character.

^(?=.*[A-Z])(?=.*[a-z])(?=.*\d)(?=.*[@$!%*?&])[A-Za-z\d@$!%*?&]{12,}$

Error message examples

  • Password must be at least 12 characters long and include at least one uppercase letter, one lowercase letter, one number, and one special character.

  • Use 8+ characters with an uppercase letter, lowercase letter, number, and special character.

Save and apply

  1. Review all fields and confirm the effective date and time.

  2. Click Save.

Related articles