Within the application, you have the ability to set up a few basic password restrictions and login requirements. More specifically, you can enforce password length, password update time-frame, and two factor authentication requirements.
How to set password restrictions for account
Click on 'Settings >Administration'. Next, click 'Member Account'. Scroll down to the section titled 'Password Restrictions'.
Under this section, you can set a minimum password length, a maximum number of months allowed before user has to create a new password, and whether or not all users your account will require to turn on two-factor authentication for enhanced security. Make sure to click 'save' after you finish updating each of these settings.