A password policy can be assigned to each user or a group of users in an organization or could be set as a default at the organization or enterprise level. The password policy assigned to a user takes precedence.
Before you assign a password policy to a user, user group or an organization, you must first define and configure the password policy with rules for implementation.
You can assign a password policy to a user, user group or an organization in the Applications Manager from the User Details, Group Details and Organization Details windows respectively.