---
title: "Password policy"
slug: "password-policy"
updated: 2022-03-13T19:58:00Z
published: 2022-03-13T19:58:00Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://knowledge.lightico.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Password policy

Lightico allows you to decide on a password policy that includes definitions such as length and expiration time. You can also define a threshold for locking out users after failed login attempts.

Lightico requires all passwords to be at least.:

- 8 characters
- 1 uppercase character
- 1 lowercase character
- 1 digit
- 1 special symbol [ ! @ # $ % ^ & * , . ]

Passwords cannot contain the portion of your user's email address before the @ symbol.

In addition to these requirements, go to **System settings****⇾****Security********⇾****Password policy** to configure the following password policy settings:

| Settings | Configuration instructions |
| --- | --- |
| Minimum password length | Set the minimum number of characters allowed in a password. By default, the minimum is 8. |
| Enforce password change | If you changed the settings to increase the minimum number of characters allowed in a password, you can enforce users with shorter passwords to change their password the next time they login. |
| Password expiration time | Set a period of time that a password can be used before it becomes invalid. |
| Password lockout threshold | Set the number of failed login attempts that will cause agents and administrators to be locked out. |
| Block use of recent passwords | Set the number of recent passwords that cannot be reused as a new password. |