Overview
You have a number of options to customise the password settings within your portal. You can choose things like password length and whether character combinations are required when a user sets their password.
Manage Password Settings
The password settings for your portal are managed from Config > System Setup > Security Settings. You will need ‘Show Security Settings’ enabled in your Account Permissions in order to access the Security Settings screen.
To enable this permission for a user, go to Users > Staff/Admins > select the user > System Access and tick the ‘Show Security Settings’ checkbox, then click Save.
The Security Settings screen includes the below Password Security settings:
Minimum length |
The minimum number of characters required when a user is setting their password. This field is mandatory with a default value of 10. |
Maximum length |
The maximum number of characters allowed when a user is setting their password. This field is mandatory with a default value of 128. |
Lowercase letters |
When the checkbox is ticked, users will be required to include at least 1 lower case letter in their password. |
Uppercase letters |
When the checkbox is ticked, users will be required to include at least 1 upper case letter in their password. |
Special characters or numbers |
When the checkbox is ticked, users will be required to include at least 1 special character or number in their password. |
Force password expiry |
When the checkbox is ticked, passwords will expire after the number of days you specify in ‘Expire password after (days)’. |
Minimum unique passwords |
The number of unique passwords that a user must create before they can reuse a previously set password. This field is mandatory with a default value of 3. |
Maximum failed attempts before ban |
The number of user attempts to enter a password before they will be locked out of the system. This field is mandatory with a default value of 10. |
Failed attempts ban length (seconds) |
The length of time that a user is locked out of the system when they pass the maximum number of failed attempts. This field is mandatory with a default value of 3600. |
Comments
0 comments
Please sign in to leave a comment.