What are some of the limitation to technical Controls for password policies?



  • Without user training, password complexity might not add any additional security
  • Written down passwords
  • Sharing passwords
  • Only one character being changed in a password
  • Passwords reset by Admin staff and will need to be changed immediately
  • Overhead of resetting passwords
  • Different Password policy within one domain.