- Minimum password length: 10 characters
- Commonly used passwords are forbidden. New prospective passwords are checked against various lists of common passwords
SWITCH edu-ID does not enforce ineffective password limitations. It almost entirely follows the NIST recommendations for memorized secrets (passwords). No periodic password change is required.
The only complexity requirement is that at least two character classes (lowercase letters, uppercase letters, numbers, punctuation) must be present in the password.
- Choose a long password (> 15 chars). Read these hints.
- Don't re-use a password across multiple websites
To protect your accounts from phishing and other unauthorized access it is strongly recommended to activate two-step login.
See also Password Policy