Password policies quality

This page summarizes documentation provided for PasswordRequirements.PasswordQuality and represents how passwordRequirements instances are chosen to be applied based on the device management mode.

  1. Complexity-based requirements are COMPLEXITY_LOW, COMPLEXITY_MEDIUM and COMPLEXITY_HIGH.
  2. Quality-based requirements are all other requirements except PASSWORD_QUALITY_UNSPECIFIED.

Prior to Android 12

Quality-based settings are always selected for all scopes if present.

Android 12 and later

Behavior depends on the device management mode.

Fully managed devices

Device scoped quality-based setting is always applied if present.

Company-owned work profile devices

The first two columns represent which password settings are specified in the policy. The last two columns represent which password settings are chosen to be applied.

Device-scoped setting Profile-scoped setting Applied device-scoped setting Applied profile-scoped setting
Complexity & Quality Complexity & Quality Complexity Complexity
Complexity & Quality Quality Quality Quality
Complexity & Quality None Quality None
Quality Complexity & Quality Not allowed
Quality Quality Quality Quality
Quality None Quality None
None Complexity & Quality None Complexity
None Quality None Quality
None None None None

Personally owned work profile devices

The first two columns represent which password settings are specified in the policy. The last two columns represent which password settings are chosen to be applied.

Device-scoped setting Profile-scoped setting Applied device-scoped setting Applied profile-scoped setting
Complexity & Quality Complexity & Quality Complexity Complexity
Complexity & Quality Quality Complexity Quality
Complexity & Quality None Complexity None
Quality Complexity & Quality Not allowed
Quality Quality Complexity (Translated from Quality) Quality
Quality None Complexity (Translated from Quality) None
None Complexity & Quality None Complexity
None Quality None Quality
None None None None