Password Complexity
To update your accounts password complexity settings, select the gear icon located at the top right of the screen and the "Edit Account" modal popup will be presented.
On the Password Settings tab, here you can update the password requirements for the account.
Complexity Requirements:
Minimum Length: A blank or 0 will set no limit for a minimum number of characters in a user’s password.
Maximum Length: A blank or 0 will set no limit for a maximum number of characters in a user’s password.
Require Upper Case Letter: A strong password policy would require a user’s password to contain an uppercase letter.
- When this is set to "On" user's will be required to include an upper case letter in their password.
- When this is set to "Off" user's will have the choice to include an upper case letter in their password.
Lower Case Letter Required: A strong password policy would require a user’s password to contain a lower case letter.
- When this is set to "On" user's will be required to include a lower case letter in their password.
- When this is set to "Off" user's will have the choice to include a lower case letter in their password.
Number Required: A strong password policy would require a user’s password to contain at least one number.
- When this is set to "On" user's will be required to include a number in their password.
- When this is set to "Off" user's will have the choice to include a number in their password.
Special Character Required: A strong password policy would require a user’s password to contain at least one special character.
- When this is set to "On" user's will be required to include a special character in their password.
- When this is set to "Off" user's will have the choice to include a special character in their password.
Password Can Contain Username: A strong password policy would not allow a user’s password to contain their username.
- When this is set to "On" user's will have the option for their password to contain their username.
- When this is set to "Off" user's will not be able to use their username in their password.
Require a Security Question: This is also known as 2-factor authentication.
- When this is set to "On" a security question will be required. User's will be required to set their security question and answer on their next login and will be prompted to answer their security question following each subsequent login.
- When this is set to "Off" a security question will not be required upon login.
Change Requirements:
- Number of times a day a user can change their password: A blank or 0 will set no limit on the number of times the user can change their password in a 24 hour period. (e.g. setting this to 3 would allow the user to change their own password 3 times within a 24 hour period and then inform them they have reached their limit upon a fourth attempt)
- Number of previous passwords users cannot reuse: A blank or 0 will set no limit for the number of previous passwords that cannot be reused. (e.g. setting this to 3 would not allow the user to reuse the last 3 passwords that were previously used for their login credentials)
Expiration Requirements:
- Number of consecutive failed login attempts before user account is locked: A blank or 0 will set no limit on the number of failed attempts on a password. A strong password policy would be to set the number of failed attempts at 3 before a user is locked and must contact their administrator.
- Number of days before a user's password auto-expires and forces a password change: A blank or 0 will set no limit on the number of days before a forced password change. A strong password policy would be to set the number of days before a user is forced to change their password at 30.
- Number of inactivity days before a user account is locked: A blank or 0 will set no limit for the number of days a user can be inactive in the system. A strong password policy would be to set the number of days a user can remain inactive in the data room before their are locked and must contact their administrator at 90 days. User's who have not logged in within 90 days of their last login would automatically be locked by the system at the end of day on the 90th day.
Articles in this section
- Adding a Folder
- Adding a New Room
- Adding a New User
- Adding and Editing Security Sections
- Adding Tasks
- Archiving
- Archiving A Room
- Branding
- Collections
- Creating a Custom Login
- Custom Watermarking
- Deactivated User Search
- Document Tags
- Document Viewer
- Document Viewer Overrides
- Downloading
- Downloading Files
- Editing File Settings
- Editing Multiple Users
- Editing Tasks
- Editing User
- Editing Your Profile
- Emailing Users from the Application
- Embed iFrame
- External File Upload Feature
- File Move / Copy
- Folder and File Naming Restriction's
- Folder Edit
- Folder Structure Upload
- Getting Started
- How to Clear Browser Cache
- Importing New Rooms
- Managing Your Profile
- Password Complexity
- Password Management
- Permission Overrides for Users
- Removing Access vs. Deleting Users
- Removing Encryption from a PDF
- Room Admin with Room Creation
- Room Notification Email Settings
- Run As: User
- Schedule Room Updates
- Security Levels and Security Sections
- Security Sections
- Security Sections in Documents
- Storage Indicator
- Subsciption Management
- Subscription Management Screen
- Task / Request List Management
- Task Management Screen
- Task Managmenet Dashboard
- Task Types
- Two-Factor Authentication
- Update Room Contact
- Updating Room Instructions
- Users List