Setting up Strong Password Requirement

DeployHQ now supports enhanced password security enforcement to help protect your projects and comply with PCI DSS 4.0 requirements. This article explains our password requirements and how to configure them for your organisation.

Password Requirements

To maintain strong security standards, DeployHQ enforces the following password requirements:

• Minimum length: 12 characters
• Must include:
  • At least one uppercase letter (A-Z)
  • At least one lowercase letter (a-z)
  • At least one number (0-9)
  • At least one special character (!@#$%^&*()_+-=[]{}|;:,.<>?)

These requirements align with PCI DSS 4.0 standards and help protect against unauthorised access to your account.

Configuring Password Requirements

For Organisation Administrators

1. Log in to your DeployHQ account
2. Select "Settings"
3. Under "Account & Access" you can: Enable/disable strong password enforcement for all users

For Team Members

When creating a new password or updating an existing one, the system will automatically validate your password against these requirements. A password strength indicator will show whether your password meets all necessary criteria.

Password Update Requirements

• Existing users will be prompted to update their passwords to meet the new requirements upon their next login
• New users must create passwords that meet these requirements during account creation
• Passwords must be changed if they're found to be compromised in known data breaches

Best Practices

We recommend:

• Using a password manager to generate and store strong passwords
• Not reusing passwords across different services
• Changing passwords periodically
• Enabling two-factor authentication (2FA) for additional security

Support

If you encounter any issues with password requirements or need assistance, please contact our support team at support@deployhq.com.