The purpose of this Knowledge Base Article is to walk users through the IDF's *Active Directory Password Policy and key steps to setting a strong password that meets the Policy.
IDF's Policy (Up to date as of April 2025)
- The last 24 passwords used are remembered. You are strongly encouraged to not reuse old passwords, and recent old passwords cannot be reused.
- Maximum Password length is 43 Days. You will be required to change your password at or before the 43rd day. If you do not, you will be forced to change your password before you can continue.
- Minimum Password length is 7 characters. Passwords attempted to be used shorter than 7 characters will prompt you to make the password longer.
- Meets Complexity Requirements (Must include a special character, number, upper and lowercase letter)
- Cannot contain repeating characters (Randomly generated examples of a BAD password with repeating characters: tG27@999, Y8qq!B7)
In order to make a strong password, make sure your password is longer than 7 characters in length, meets complexity requirements and is not similar to something you used in the past. Alternatively you can use a password generator like
LastPass to help you generate a strong password or save passwords on a web browser as long as the account used to save the passwords has a strong password.
NEVER save passwords to a notepad, word document, excel file or any other easy to decipher filetype. If you must save your passwords, ensure its saved behind an account with a strong password, or make sure to use a Password Manager like ZohoVault or LastPass.
*The Active Directory password Policy is for Desktop Logins, VPN login and Microsoft logins. Subject to change and possibly different for external platforms like Zoho, Adobe, etc.)