Question AAAI-05
Does the system have password complexity or length limitations and/or restrictions?
| Weight | 40 |
| High Risk | No |
| Required | No |
| Compliant Answer | No |
Standard Guidance
Answer "Yes" if your product has internal limits to password complexity (max langth, certain special characters unsupported, etc.).
Answering "NO"
EDUCAUSE provides no guidance here
Answering "YES"
Describe these limitations and/or restrictions and state what lengths and complexities are supported.
Reason for Question
Many institutions have policy focused on passwords/passphrases, and this question confirms the capacity of a vendor's software/product/service to comply.
Follow-Up Inquiries
Follow-up inquiries for password/passphrase limitations and/or restrictions will be institution/implementation specific.
HECVAT Pro Advice
[Add expert insights and best practices]
Implementation Tips
[Add practical steps for SME SaaS vendors]
FAQ
[Add common questions related to this HECVAT item]
Resources
[Add links to relevant articles or tools]