Follow the steps below to configure Password Security for either Legacy Security or Enhanced Security

1. Go to Administration  >> Password Policy >> Select User's passwords will never expire >> If you never want the User's Password to expire

2. Or you can select User's passwords will expire to specify how often user will need to change their passwords

NOTE : You can override this for individual System Users in Administration >> System Users >> Other Settings

3. You can choose the Password Complexity between Legacy Security and Enhanced Security

3.1 Legacy Security  is the default one and it should contain minimum 7 characters , at least 1 capital letter and 1 number . It cannot contain organisation name or user name

3.2 Enhanced Security is the new option and it should contain  minimum 10 characters , at least 1 capital letter , 1 number and at least 1 special character (e.g., !@#$%^&*) . It cannot contain organisation name or user name

4. Additionally there is  Password History tracking option to prevent users from reusing recent passwords, improving security by stopping password cycling

For Example :  if  its set to 2, you cannot use previous two passwords

5. Click on Save

Note : Password History is only available for Enhanced Security and not for Legacy Security