The system does not enforce a strong password policy.
Enforce a password policy, which will include at least the following guidelines:
[ ] Passwords will expire after no more than 90 days.
[ ] Passwords will not repeat themselves for 4 generations.
[ ] Force the users to change their password upon first logon to the system, and after any time it was reset by an administrator.
[ ] The password length will be at least 8 characters long, and will contain at least three of the following group of characters: * Capital letters. * Lowercase letters * Digits * Special characters.
The system does not enforce a strong password policy.
Enforce a password policy, which will include at least the following guidelines: