How Often Should You Require Users To Change Their Passwords?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
It depends on the security requirements of the application or website. Some organizations require users to change their passwords every 30, 60, or 90 days. Others allow passwords to remain the same for up to a year or more. It is important to consider the level of security needed when deciding on a password change frequency.
The frequency at which users should be required to change their passwords will depend on the sensitivity of the data being protected. However, as a general rule of thumb, passwords should be changed at least every 90 days.