On September 30th, 2025, our password policy settings will be improved to enhance account security.
As part of the release:
The minimum password length will increase to 14 characters.
When a Global Administrator opens the Management Portal | Settings | Security tab and clicks Save, this change will take effect.
All users will be prompted to update their passwords on their next login to meet the new requirement.
To make it easier for users to comply with this policy securely, we encourage you to consider the following options:
1. Use a Password Manager
Password managers make it simple to generate, store, and autofill secure, unique passwords.
A good password manager should:
- Securely store and autofill passwords across all devices
- Allow users to generate strong, unique passwords
- Offer secure sharing options for administrative teams (e.g., IT staff)
- Include support for two-factor authentication (2FA)
- Be compliant with relevant privacy and security standards (e.g., ISO 27001, GDPR, Australian Privacy Principles)
We encourage schools to evaluate solutions that align with their internal IT policies and risk posture. Your chosen tool should be simple to use, well-supported, and trusted by organisations of similar size and scope.
2. Enable Modern Authentication
Open the Management Portal, go to Settings. Our platform supports:
Single Sign-On (SSO) via SAML or OpenID Connect
Two-Factor Authentication (2FA) (authenticator apps or email, view setup instructions)
Passkeys, when supported by device and browser, for passwordless login