There is no way to enforce restrictions to a password OOTB. But you can always provide your own credential handlers/storages:
Another thing you can do is use ad-hoc attributes to store user preferences and provide the validations in your application. So instead of using directly the IdentityManager you provide your own PasswordManagementService which in turns provide all validations and delegates the update/create to the IdentityManager.
You can use attributes on Partitions to store global password restrictions and on Users for a more fine-grained control.