# Password settings ### 1. Default password settings for the users This setting helps system admins enable or disable 2-factor authentication for the users while logging into the system.

### 2. Account Lockout Policy *Account lockout policy is* used by system admins to lock out an account when someone tries to log on unsuccessfully several times in a row. The user's account will be locked after the **mentioned number of wrong attempts.** System admin can unblock users from [**manage user**](/user-management/managing-users.md)**.**

### 3. Validate a Password System Admin can set a default or a custom password validation for its user's accounts.

### 4. Password Expiry Time As a System Admin, you can make user passwords expire after a certain number of days, or set passwords to never expire. By default, passwords are set to never expire for your organization.

### 5. Reset the Password The System admin can enable users to reset their password if all login attempts are exhausted.

--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.senpiper.com/general-system-settings/authentication-settings/password-settings.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.