Passwords shall be a minimum of eight (8) characters in length which can be a combination of any three of the four rules listed below.
- Not based on anything someone could guess or obtain using personal related information (names, telephone numbers and dates of birth, etc.)
- Does not consist of words included in dictionaries
- Free of consecutive identical characters
- A combination of upper and lower case characters, numbers and special characters
Required Password Changes
- Standard users will be automatically requested to change their password every ninety (90) days, the last ten (10) passwords cannot be reused and at least four (4) characters must be changed
- Administrators will be automatically requested to change their password every sixty (60) days, the last ten (10) passwords cannot be reused and at least four (4) characters must be changed
Password Expiration Reminders
- If a password is about to expire, an email reminder will be sent 7 days prior to the password expiring.
- If a password is not updated within those 7 days, a second reminder email will be sent 1 day prior to the password expiring.
- Users who utilize the SSO feature will not receive this email reminder.