Changes

Jump to: navigation, search

Password Policy

1,432 bytes added, 20:44, 18 July 2016
no edit summary
==Overview==
'''Password Policy''' is used to configure the Password Policies within SmartSimple with your organizational policies. It is best practice to ensure that these policies match the other systems that are deployed by your organization. Consequently these policies provide for extensive configuration options. Password Policies include the ability to control ; the length and complexity of passwords, password expiration and historyfrequency usage, the method for sending new requested passwords, word restrictions, the number of retries that the [[User|user]] is allowed, and the lockout time for the account if they exceed the number of retries, email alerts for invalid passwords.  '''Multiple password policies''' can be supported by the system. This feature provides for less stringent policies for types of users that infrequently access the system such as external contacts. Alternative password policies can be set for any level in the organizational hierarchy.
==Password Encryption==
{{PasswordEncryption}}
==The Password Policy Page IllustratedSection 1: Persistent Login and Expiration of Inactive Accounts==[[Image:PasswordPolicynew.png|link=]]
==Expiration of Inactive Accounts==This section control the expiration of inactive accounts. User accounts can become automatically disabled after a predetermined period of time. A [[image:password reset is required by the user to regain access to the system. This feature empowers organizations and adds to the many account management options available-001.png]]
'''[[Disable User Account After Inactive Period|Details Persistent Login''' provides for the use use of a persistent secure cookie on configuring this section is located herethe users computer to eliminate the need to use a username and password to log into the system. '''This feature will be deprecated in the July 2016 upgrade.]]'''
==Password Settings Section=='''Expiration of Inactive Accounts''' provides the ability to automatically disable a user account after a predetermined period of time. A password reset is required by the user to regain access to the system. '''[[Disable User Account After Inactive Period|Details on configuring this section is located here.]]'''
==Section 2: Password Settings Section== This section is used to set password attributes [[image:password-002.png]]    '''Maximum Password Update in 24 Hours''' – The Sets the maximum number of password changes a user can make within a 24 hour period can be defined. This is to prevent users bypassing the password history restriction by changing their password repeatedly to return to a previously used password. This setting only pertains to password changes by use of "Update Password" by user, not to the "Forgot Password" link or system administrators using "Set Password."
'''Password length''' – the minimum length allowed for a [[Password|password]], between 6 and 32 characters.
 
'''Data Restrictions''' - passwords set by users can be restricted so values such as first name, last name or organization name cannot be used in the password. Any number of fields can be selected from both the organization or the user profile; standard and custom fields are supported.
 
[[image:password-008.png]]
 
In the example above City, Country and Phone fields have been selected from the user's organization record and first name, last name, birthplace and nickname fields have been selected from the user profile.
 
'''Complexity''' – the level of complexity required in the [[Password|password]], the options are:
Smartstaff
311
edits

Navigation menu