SigParser users who create a password for login must create passwords that meet the following complexity requirements:
At least 8 characters
At least one number
At least one lowercase letter
At least one uppercase letter
Additionally, all users who use a username and password to login will get a two factor MFA email with a code when they sign in for the first time on a device. The device will eventually expire within a couple days and the user will have to sign in on that device again.
Can I change/customize the password policy?
No, we don't support custom password policies.
Most users don't use the username/password flow. Most users sign in with Microsoft or Google where your organization can configure your own password policies.