Is there a way to allow new user registration via clients, but enforce a minimum password length and/or complexity?
I can’t find requirements for password complexity in XEPs (XMPP standards). There are no such option in Openfire. Also for this to work, clients would have to support this too (appropriate dialogs, etc.).
So the only real option I have then is to disable self registration, disable users ability to change passwords, and set them up all manually.
This doesn’t sound like a product I’d want to roll out to anything more than a hobby group of people unless we do AD or LDAP integration.