By Default, when using the built-in user database, SSL-Explorer will have a simple password restriction of at least 5 characters in length.

This setting can be found in System Configuration->Security Options->Password Options and the setting is called 'Password pattern'.

If you want to change this value, here is some background and a worked example.

The password field is set as a regular expression. Let's break down the existing pattern of .{5,} and analyse it.

It starts with a dot, which means match any character. Then we have {5,} which means match the previous character 5 or more times (the comma is the more times part).

Let's say we want to create a more complicated pattern such as at least 5 characters long, with at least 1 capital and 1 symbol anywhere in the password.

This expression should work to meet these needs:-

(?=.*[a-z])(?=.*[A-Z])(?=.*\W).{5,}

Breaking this down, the ?= parts do a forward lookup, so the expression will match in any order in the string rather than the default order that the regexp was entered in.

Then the expression checks for one or more lowercase characters (.*[a-z]), one or more uppercase characters (.*[A-Z]) and one or more non-letter characters (.*\W).

Then the expression applies to all of this a limit of 5 or more characters (.{5,}).