# Password policy settings

### Password complexity

* at least 8 characters
* no easy patterns or repeats (for example, `111111`, `aaaaaa`, `12345`, `qwerty`)
* no personal data or common words (for example, names, birth dates, `computer`, `LAN`, `USER`)
* at least one character from each group:
  * uppercase English letter (A–Z)
  * lowercase English letter (a–z)
  * number (0–9)

### Password history and expiration

* you can’t reuse a password for 12 months (default, configurable)
* you can’t reuse the last 5 passwords (default, configurable)
* if you don’t change your password for 90 days (default), you must change it before signing in

{% hint style="info" %}
Admins can make the policy stricter. See [How to change password or session policy?](/admin-panel/account-settings/how-to-configure-password-policy.md).
{% endhint %}

To learn, how to update your password, see [Password update](/user/user-profile/how-to-change-your-password.md).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://support.docstudio.com/user/authorization-and-security/password-policy-settings.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.