How to configure our company's password policy, including retrieval and structure, and for any user?
1.) Please navigate to 'Admin Tools' > 'Company Settings' > 'Password & Login Policy Settings'.
2.) After selecting 'Password & Login Policy Settings', please note that you have the following options for configuring your system's password policy upon scrolling down.
- Below is the explanation of few of the fields in the screenshot above:
Minimum Password Age (in days) control when password could be changed again based on the first password changed ,and prevent user to change password too frequently if not -1.
if Minimum Password Age = -1 , password can be changed even many times in one day.
if Minimum Password Age = 1 and you have change passowrd today, and you can not change passoword again today , need to wait for tomorrow.
Maximum Password Age (in days) control when password should be changed again based on the first password changed, otherwise the password will be inactive.
if Maximum Password Age = 30 and you have change password today, and you should to change password after 30 days.
1* 'Mixed Case required' - If left unchecked, 'password1' will work as a substitute for 'PASSword1'. Case sensitivity, between capital and uncapitalized characters will not be enforced.
'Non-alpha characters required' - If left unchecked, characters like '$' or '!' would not be needed in an end-users password configuration.
2* 'Enable Forgot Password feature' - If checked, end users can retrieve their own passwords, assuming you select one of the three options.
3* 'Allow users to retrieve password through email' - Note: Only use email retrieval when the email address is unique for each user.
4* 'Reset passwords using security questions accessed through email / the system' - By using security questions, users can pass through an added level of verification.
Note: Enabling this option will force users to reset their passwords and will require users to enter security questions, if not previously set up. Prior to choosing this option, we recommend that you communicate this change to your end users.
- Please note that if your company employs an internal Single Sign On solution that you should submit a case to Customer Succes for more information. Some options may not be compatible with certain types of Single Sign-On. Learn more.
Configure password policy password & login policy , KBA , LOD-SF-PLT-NOT , Email Notifications , How To