Manage Company Password Policy (Security tab)
Sponsor company administrators can specify password security policies in the Security tab of the Edit Company window. By default, the minimum password requirement is set at one (1) character, meaning that the user is required to create a password with a minimum of one character. If a value is not entered in a field, the option is ignored. These settings apply to Sponsor/Owner company users only. These will not apply to Partner Company users. For the Partner Company users, the default settings apply.
To manage user password criteria:
- Go to the Company Workspace tab and switch to Admin mode.
- In the right pane, click the Open button. The Edit Company window opens.
- Open the Edit Company window and click the Security tab.
- Select the password criteria that you want to configure, and then enter the value in the text box. See the following table for details on each option.
- Click Apply to save changes, or OK to save and exit the Edit Company window.
Select this option: | To specify: |
---|---|
Minimum overall character(s) | Minimum number of characters that a password must contain; default is one (1) |
Maximum overall character(s) | Maximum number of characters that a password must contain |
Minimum numeric character(s) | Password must contain a minimum amount of numbers |
Minimum alphabetic character(s) | Password must contain a minimum amount of letters |
Minimum special character(s) | Special characters are [{~!@#$%^&*()-_=+;:'",<.>/?]} |
Password cannot be same as user name | Users cannot use their user name as their password |
Password cannot be same as first or last name | Users cannot use their name as their password |
Password cannot be same as last | A newly changed password must be different from previously used ones (indicated the number here) |
Password expiration | If password expires, users will be prompted to change it when attempting to log on |
Inform user before expiration | Upon signing in, users are warned that their passwords are about to expire and given the option of changing it |
Maximum login attempts | If user does not successfully log on after this number of attempts, the account will become locked |
Suspend inactive user after | Sets the number of days of inactivity before a user's account is locked |
Password recovery secret questions required | If selected, users will be prompted to set up security questions for password reset upon first login. Existing users will be prompted to set up security questions upon the next login. Note: This option is available for Owner, Partner, and Hosting companies. When selected, it requires users to set up the password recovery secret questions. This is applicable to all users in the respective companies including Company Administrators and Site Administrator. |
Apply Password Policy for Bidders | Select if you would like the same settings to apply to Bidders logging into the system. |
See Also
Last Published Tuesday, October 8, 2024