Our password policy is pretty straightforward for your convenience and, of course, your protection.
Minimum password requirements:
- Minimum 8 characters.
- Maximum 100 characters.
- Maximum 5 failed attempts
- Lockout duration of 5 minutes after the maximum number of failures is reached
There are no restrictions on the number of uppercase, lowercase, or special characters you can use.
We use a library that measures entropy rather than the more typical "at least 1 number, 1 symbol, 1 lowercase, 1 uppercase" policy.
This system scores each password from 0 to 4 and we only accept a minimum score of 2 or higher.
Note: We don't enforce a password expiry policy