A user requires a User Name logon ID to access the system. You can also set the minimum length and strength of passwords. These settings can be accessed from Administration | Users | Security | Policies.
A user's password is encrypted both within the system and in the database for maximum security. The System Administrator can change, but not view, a user's existing password.
The number of days for the password to expire is set within Administration | Users | User Configuration. When the password is changed, the expiry date is adjusted accordingly. The Password Never Expires field in the User Details page must be set to
False for this setting to take effect.