User password policy
Created by c.neale, last modified by j.moore on 27 Nov 2020
The complexity and validation rules for setting or resetting a User password.
| Too short | Password must be at least 8 characters long |
| Disallowed phrases | Password must not contain parts of your full name, such as your first name |
| Missing character types | Password must contain at least one character from at least three of the four character types: lowercase letters, uppercase letters, numbers and symbols |
| Same as existing | Password cannot be the same as the existing password (resets only) |