Password Security Policy
Subscriber Content
Sample Procedures for Creating and Enforcing Strong Password Policies
Use the four sample policies included in this tool to establish your company’s guidelines regarding secure and consistent system passwords.
Sample procedures include: users must not write down or otherwise record their passwords in readable form near the system to which the password pertains; passwords must not be written down and left in a place where others might discover them; if a password must be written down, it must be secured and far away from the system to which it pertains; and users must choose passwords that are challenging for others to guess but easy for them to remember, so users do not feel compelled to write down a password in order to remember it.