Allow users in v2cloud to opt for an 8-character weak password, instead of enforcing a 14-character password, which is considered excessive by end users.
The auditors who are evaluating our security certification flagged this. We argued unsuccessfully that the requirement was for us to just have a password policy. The auditors won :(