Password policy has been introduced in Bitbucket 10.3.0. This feature request is to extend the capability to have the following:

• Maximum Age: Passwords must be changed every 60 days (does not apply to privileged/service accounts or systems utilizing 2FA with OTPs).
• Minimum Age: Passwords can be changed a maximum of twice per day.
• Generic Accounts: Interactive generic accounts must have their non-expiring passwords reviewed and changed annually (non-interactive accounts are exempt).