System Settings>Security |
These policies govern basic administration rules.
Notes: •Setting this policy to Yes will lock all Users out of the system except for Administrative Users. Tip: This can be used when a new version of the system is installed and the System Administrator wants to test it without allowing other users into the system or when system maintenance is taking place.
Diagnostic Info Hardening Level Policy Values : Maximum, High, Medium, Low Default Value: Medium Notes: Controls how much sensitive data is displayed in diagnostics pages. By default, the more sensitive information is not shown. If you have extreme security requirements, you can reduce the amount of information shown.
Interval between Session Timeout Checks If there is no activity detected, the server will consider the session logged out. Notes: Every # seconds, browser will ask the server if still logged in. (Applies to SPA Mode only).
Login Hardening Hardening level for logging in. Policy Values: Maximum, High, Low, Off Default Value: Low Maximum: does not inform that User or Employee is Inactive. High: does not inform users that a password has yet to be created for their account. Low: does not inform users that they have entered an incorrect User Id or email address. Off: none of these restrictions apply (best user experience).
Session Timeout Period (Minutes) Users will be logged out after this many "?" minutes if no activity is detected. Policy Values: 0-1440
Do you want to track failed logon attempts? Possible Values: Yes, No Default Value: No Note: This policy determines if this functionality tracks and reports system access attempts by unauthorized users.
Do you require passwords to be complex?
Notes: •This Policy determines if the user passwords are required to meet complex guidelines for enhanced security. The password must be a minimum of 8 characters and contain at least 3 of the 4 following character types: Uppercase, Lowercase, Numeric, Special Characters (such as #, $, %). •This policy activates the complex password policy when the USER changes their password. It does not force an Administratively generated temporary password to follow the complex password policy.
Do you want to have user passwords expire?
Notes: •This policy allows the System Administrator to turn on or off user password expiry. •When set to Yes, the password interval System Policy determines how frequently users will be required to change their password. •When the password expires, a message will appear prompting the User to change their password and they can not access the system unless they change their password. Note: Regardless of the value in this policy, any time a new User is created by a System Administrator or a User's password is changed by the System Administrator, the User's password is set to expire immediately and the User will be required to change their password the first time they log in. This ensures that the User has a password of their choosing and protects the confidentiality of their password.
What is the password expiry interval (in days)?
Notes: •This policy determines the the number of days a user password remains active. •It is only used if the Do you want to have user passwords expire Policy is set to Yes.
Do you want to allow users to request a new password via email? Possible Values: Yes, No Default Values: Yes Note: If this is set to Yes, then any User who has forgotten their password can have it reset for them without needing to go through the Encompassing Visions System Administrator. When they click on the words 'Forgot Password?' upon log on, an email with a randomly generated password will be automatically generated by the software and sent to the logged in User. Note: This functionality will only work if employee/user passwords are entered in the ENCV database.
|