Use Secure Passwords
Passwords should be simple to remember but difficult to guess:

•USG standards: 
• Must have at least ten characters
• Must include at least two of each of the following four character types:
-Capital letters in English (A-Z)
-Small letters in English (a-z)
–Numeric (0-9)
-Special characters that are non alphanumeric ($,!,%,,...)
•Must not include the user's or a portion of the user's name
• Must not include any easily discoverable or deducible personal information about the user or the user's family, such as the user's birthdate, the names of their children, their addresses, etc.

Developing Powerful Passwords
•A well-known quotation is a good place to start:
For instance: LOVE IS A SMOKE MADE WITH THE FUME OF SIGNHS,
•Select each word's first character using the organisation standard as a guide:
•LIASMWTFOS
Add complexity now as required by the standard:
• L1A$mwTF0S (10 characters, 2 digits, 1 symbol, mixed case: Which  meets all 4 sorts of requirements for a password).
• Alternatively, think beyond the box!

Guidelines for Passwords

•Never use the default account or password for administrative access, admin, root, or administrator.

A Good password can be:
•Private: Used by only one person is a good password.
•Secret: It is not kept anywhere, not even on your notes, in clear 
text!
No need to write it down because it is easily remembered.

Contains the complexity that your company need.
– not simple to figure out by a person or programme in a reasonable amount of time, like a few weeks.
–Altered frequently: observe your organization's rules.
•Watch out for shoulder surfers and carefully input your credentials! Attempts to enter a password in the username box typically show up in the system logs.