# Auth system properties

The Auth system properties allow you to view user password configuration parameters. You can change some of these parameters, while you can not change others.

To access the Auth system properties:

1. Go to **Administration > Settings > System properties**.

<figure><picture><source srcset="/files/IjAEt89EwJkpVAXLzEbj" media="(prefers-color-scheme: dark)"><img src="/files/bHxJN9MZGwihdSAuMj8T" alt=""></picture><figcaption></figcaption></figure>

2. Click the **auth-api** menu item in the content menu to open the auth system properties setting page.

<figure><picture><source srcset="/files/lKhL9r8rP6Qx8i0eUZhk" media="(prefers-color-scheme: dark)"><img src="/files/HErSVunrgso6gGwmnIlS" alt=""></picture><figcaption></figcaption></figure>

Below is a detailed explanation of the user password configuration parameters.

<details>

<summary>NUMBER_OF_PREVIOUSLY_USED_PASSWORDS_NOT_ALLOWED</summary>

#### Description

Specifies the number of previously used passwords that **cannot be reused** as a new password.

#### Explanation

Users often rotate their passwords, and this parameter restricts such rotations by defining how many unique passwords a user must create before they are allowed to reuse a previous one.

**Note:** The minimum allowed value is `5`, and the maximum is `24`.&#x20;

</details>

<details>

<summary>PASSWORD_CONTAINS_DIGIT</summary>

#### Description

Password must contain a digit.

#### Explanation

The boolean parameter determines whether a password must include numbers. Selecting `Yes` requires the password to contain at least one numerical character. `No` allows passwords without any numerical characters.

**Note:** This parameter is defined by Tuum and cannot be changed.

</details>

<details>

<summary>PASSWORD_CONTAINS_LOWER_LETTER</summary>

#### Description

Password must contain a lowercase letter.

#### Explanation

The boolean parameter specifies if the password must include lowercase letters. `Yes` requires the password to contain at least one lowercase letter. `No` allows passwords without any lowercase letters.

**Note:** Tuum sets this parameter, and you can not change it.

</details>

<details>

<summary>PASSWORD_CONTAINS_SPECIAL_CHARACTER</summary>

#### Description

Password must contain a special character (@#$%).

#### Explanation

The boolean parameter specifies if the password must include one of the special characters listed in brackets (@#$%). `Yes` requires the password to contain at least one special character is required. `No` allows passwords without any special character.

**Note:** This parameter is defined by Tuum and cannot be changed.

</details>

<details>

<summary>PASSWORD_CONTAINS_UPPER_LETTER</summary>

#### Description

Password must contain a uppercase letter.

#### Explanation

The boolean parameter specifies if the password must include uppercase letters. `Yes` means at least one uppercase letter is required. `No` means the password can be without any uppercase letters.

**Note:** This parameter is defined by Tuum and cannot be changed.

</details>

<details>

<summary>PASSWORD_MAXIMUM_LENGTH</summary>

#### Description

Maximum length of a password.

#### Explanation

The value specifies the maximum number of characters allowed in the password.

**Note:** The maximum allowable value is `128`.

</details>

<details>

<summary>PASSWORD_MINIMUM_LENGTH</summary>

#### Description

Minimum length of a password.

#### Explanation

The value defines the minimum length of the password.

**Note:** The minimum allowed value is `12`.

</details>

<details>

<summary>PASSWORD_VALIDITY_DAYS</summary>

#### Description

Specifies the number of days after which a new password must be set.

#### Explanation

This value defines the maximum duration a password can remain valid before expiring.

**Note:** The minimum allowed value is `3`, and the maximum is `90`.

</details>

<details>

<summary>TOKEN_EXPIRY_TIME_SECONDS</summary>

#### Description

Token expiry time in seconds (cached for 30 minutes).

#### Explanation

The value indicates the maximum number of seconds an access token can remain valid before it expires.

**Note:** The minimum allowed value is `300`, and the maximum is `3600`.

</details>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.tuum.com/backoffice-user-guides/iDyT31cW9CYApPltrXUd/administration/system-properties/auth-system-properties.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.