In Settings, click the General tab. Click Edit next to Password Policy.
Activate Enable Custom Policy. You can now determine how often User Passwords must be changed, and what Passwords must consist of. You can also decide whether previous Passwords can be reused, and if so, how frequently.
If you choose not to create a Custom Policy, there is already a default Password policy in place. The CustomerMinds default policy states that a password must be at least 8 characters long and include a numeric character. These passwords will never expire.