Your password policy defines the requirements needed for your users’ passwords. You have the option to select the level of security you would like to have.
You can edit your privacy policy in the Account preferences > Authentication > Privacy Policy.
Please note: changing the setting of your password policy will result in all your users’ current passwords becoming invalid. An email will be automatically sent to all of them asking them to set a new password in accordance with your new policy.
You will also be logged out and required to reset your password after saving a change to the password policy.
You can choose among three different options, or opt for a customized one.
-
High:
- must be different from the previous 5 passwords
- must be at least 10 characters long
- must include letters in mixed case and numbers
- must include a character that is not a letter or number
- 5 attempts are allowed before the lockout
-
Medium
- must be at least 8 characters long
- must include letters in mixed case and numbers
- must include a character that is not a letter or number
- 5 attempts are allowed before the lockout
-
Low
- must be at least 6 characters long
- 5 attempts are allowed before the lockout
-
Custom
- must be different from at least this many previous passwords
- must be at least this many characters long
- must include numbers and special characters
- must include letters in mixed case
- number of failed attempts until the lockout
Please note, if SSO is active and enforced, the password policy does not apply.