I can’t seem to find any password policy rules. Is there a way to enforce strong passwords? If I was using ldap I would rely on the ldap server for this but I am using local accounts.
Also are there any plans to support two factor auth? Either QR codes or YubiKey type hardware tokens?