Password Policies: Best Practices

To maintain a strong security posture, it is suggested that all user passwords follow the most appropriate restrictive policy based on their use and access of the system.

Students

It is suggested to utilize less restrictive password policies for students Grades 8 and under, and students with special needs. Our recommendations for student passwords broken down by Grade Level:

K-2 → Secure QR Codes Secure: Generates a QR Code that is based on the user's username and password. Secure QR Codes eliminate the need for a user to enter their username and password.

3-6 → PictoGraph/Insecure QR Codes

Insecure: Generates a QR Code that is based on the user's username only.
Insecure QR Codes eliminate the need for a user to enter their username.

7-8 → Passwords, combination of letters and numbers ((Can still use QR codes if desired.))

9-10 → Passwords, combination of letters, numbers and special characters

11-12 → Passwords, combination of uppercase, lowercase letters, numbers and special characters and password expirations.

Staff

Passwords, combination of uppercase, lowercase letters, numbers and special characters and password expirations with a minimum of 90 days.

Please Note:

All password policies must take into account all systems involved. Various target systems likely have different password policies and the decision you make about your RapidIdentity Cloud PW policy must adhere to the strictest password policy.

Additional Resources to Review on Password Policies Best Practices:

Password Policies: Best Practices