Q: I want to know what policy is in place for GEVME password? 

A: GEVME Password protection has the following policy:

1. GEVME account password policy

Minimum of 12 characters and contain at least:
1 x Upper case letter
1 x Lower case letter
1 x Digit
1 x Symbol

- Using user id as passwords
- Common passwords: https://en.wikipedia.org/wiki/List_of_the_most_common_passwords

The above mentioned policy applies to newly-created GEVME accounts, or those users trying to change their password and those who click on "Forgot passwords".

Places where it is implemented:
- Reset Password

- Admin Console > Account > Security

- New account > Create password

2. GEVME's organisation security setting

Admin Console > Organisations > Organisation Details > Security

- "Security" options allows admin to force users to change password every 1 - 3 - 6 - 12 months. 

- Only Admin of the Organisation will see this option.