The purpose and scope of password policy is to establish the rules and guidelines for creating and managing secure passwords for the users and systems of an organization. Password policy aims to prevent unauthorized access, protect sensitive data, and comply with relevant standards and regulations. Password policy applies to all users, devices, and applications that require authentication within the organization's network or domain.