This page provides information about SmartHR's password policy.
If you have any questions about the password policy, please refer to the help page below.
About SmartHR's password policy
The SmartHR password policy balances user friendliness with the standards of the NIST (US government standards) and the National Center of Incident Readiness and Strategy for Cybersecurity (NISC).
Banned password (blacklist) settings use the API of an external database that can check whether the password has been leaked in the past.
Periodic changes should not be requested
You will be locked out of your account after 10 incorrect password attempts.
After 5 incorrect attempts, a “number of attempts remaining” message will be displayed.
An account can be unlocked by personnel in charge or the employee can reset their password.
For more information, refer to the help page below.