Drata

This test is part of the <b>Password Policy </b>control that ensures your company has established formal guidelines for passwords to govern the management and use of authentication mechanisms.

If Drata finds that a Password Policy either does not exist or has not been approved within the last 12 months the test will fail.

To remediate a failed test, you will need to either upload or build a Password Policy within Drata, set a renewal date that aligns with your compliance program goals, and notify the owner to click 'Approve Policy' as soon as possible.

Add a 'Password Policy' and ensure that the newly added policy is approved

Set a renewal date that aligns with your compliance program goals. Many frameworks require policy review/approval annually

1. Navigate to the Policy Center page
2. Add a 'Password Policy' and ensure that the newly added policy is approved
3. Set a renewal date that aligns with your compliance program goals. Many frameworks require policy review/approval annually

<a href="https://help.drata.com/en/articles/4826936-policy-builder">Building Policies Within Drata</a>

- <a href="https://help.drata.com/en/articles/4826936-policy-builder">Building Policies Within Drata</a>

Drata inspects your company records to determine if a Password Policy is in place and is before the policy renewal date.

Test: Internal Password Policy for Employees

Find answers and get help from Intercom Support and Community Experts

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Title

Track the progress of all tickets related to your company.

Tickets portal.

{assigneeName} needs more information from you