Currently it is possible to enforce password strength for SEMS (Symantec Encryption Management Server) administrator accounts. See article http://www.symantec.com/docs/HOWTO83483
However, there is currently no mechanism to manage passwords in a similar way to, for example, Active Directory and many other applications. Features include:
- Password Expiry - passwords that expire and have to be changed after a certain length of time.
- Password History - previous passwords are stored so as to prevent a certain number of previous passwords being used, eg, the last 3 or 5.
- Password Lockout on a Date - passwords that expire automatically on a defined date.
These are standard features in many applications but are strikingly absent in SEMS.