# Step 6. Passwords rotation

## Introduction

The password rotation reduces the vulnerability to password-based attacks. Soffid allows you to limit the password lifespan and force you to change it.

Soffid defines a procedure for Password rotation to keep safe the critical accounts. It allows you to create password policies with the proper configuration to create strong passwords, the **password type should be "Automatically generated**". Those policies must be assigned to critical accounts. Also, it allows to configure of an automatic task, **Expire untrusted passwords,**  to check when a password has to be changed.

## Screen overview

#### Password Policy

[![image-1699530396572.png](https://bookstack.soffid.com/uploads/images/gallery/2023-11/scaled-1680-/image-1699530396572.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-11/image-1699530396572.png)

#### Scheduled task

[![image-1699530312716.png](https://bookstack.soffid.com/uploads/images/gallery/2023-11/scaled-1680-/image-1699530312716.png)](https://bookstack.soffid.com/uploads/images/gallery/2023-11/image-1699530312716.png)

<p class="callout info">You can find more information about how to configure a scheduled task on the [Scheduled task page](https://bookstack.soffid.com/books/soffid-3-reference-guide/page/scheduled-tasks).</p>