Best example for a security policy – a password policy

A password policy is created to provide the ability for the user to change their account password. To achieve this, a policy should be created that defines a secure password for the systems. The following are the steps to be followed to create a password policy:

• Set password history: Password history keeps track of old passwords to ensure they are not repeated. 
• Maximum and minimum password age: The second factor in the password policy is deciding how long users can keep their passwords before they expire. The intention of this is to make the users change their password periodically. 
• Minimum password length: This configures the minimum number of characters for a password. Best practice is to have at least 8 to 14 characters.
• Complexity of the password: The important factors in configuring complex passwords are that passwords should have a minimum of eight characters, which consist of numbers, symbols, and lowercase and uppercase letters.