Password policies are strict regulations of password content. Next policies are used on the platform:
-
The password must be at least eight characters long
-
Password should not be easily guessed (the password should not include a repeating sequence of any characters, as '111111', 'aaaaaa', '12345', 'qwerty', 'йцукен', etc)
-
Password should not include easily selectable combinations of symbols (first names, surnames, names, nicknames of pets, dates of birth, etc.) and generally accepted abbreviations (computer, LAN, USER, etc.)
- Password must contain characters from the following categories:
— Uppercase English letters (A-Z)
— Lowercase English letters (a-z)
— Numbers (0-9) -
Password can’t be reused for 12 months (default configurable value)
-
The last 5 passwords can’t be reused (default configurable value)
-
If the password has not been changed within 90 days (the default value), the user will be blocked from logging in until the password is changed
