Password Policy Expiration too weak - One year

Impact area

Security

Severity

Medium

Affected element

Profile

Org Config

Rule ID

SF-0177

Impact

Weak password expiration policies can open you up to brute force and dictionary attacks. Passwords with over 90 days expiration time are unsafe.

Remediation

Modify the password expiration time to ninety days or less.

Time to fix

30 min

What's here


Related content

Profiles rules

Org Configuration rules