Password Policy

<< Click to Display Table of Contents >>

Navigation:  System Manager > Manage Security Settings >

Password Policy

 Previous pageReturn to chapter overviewNext page

 

The Password Policy function allows you to set up rules which will govern the kind of log in passwords that will be accepted in the system. Complex user passwords help prevent unauthorized access into your AccountMate system and help protect your data's integrity.    

 

 

Perform the following to set up password policies:

 

1.Access the Password Policy function from the Setup group under the System Administration menu of the System Administrator module. The Password Policy window is displayed.

 

2.In the Password Complexity area, specify the rules which will determine the complexity of the user passwords.

 

Minimum password length (characters)

Enter in this field the minimum number of characters for a password. The maximum value is ten (10) and the minimum is one (1). You may use the Spinner button to select a value.

 

Minimum number of letters (a-z, A-Z)

Enter in this field the minimum number of letters required in a password. You may use the Spinner button to select a value.

 

Minimum number of lower-case letters (a-z)

Enter in this field the minimum number of lower-case letters required in a password. You may use the Spinner button to select a value.

 

Minimum number of upper-case letters (A-Z)

Enter in this field the minimum number of upper-case letters required in a password. You may use the Spinner button to select a value.

 

Minimum number of digits (0-9)

Enter in this field the minimum number of digits required in a password. You may use the Spinner button to select a value.

 

Minimum number of punctuation and other characters

Enter in this field the minimum number of other characters required in a password.

 

Cannot be the same as the User Name

Mark this checkbox if you disallow the password which is the same as the user name.

 

Cannot contain User Name

Mark this checkbox if you disallow the password that contains the user's name.

 

Cannot be the same as the User Full Name

Mark this checkbox if you disallow the password that is the same as the user’s full name.

 

3.Specify values in the following fields if you want to set these limitations to users' passwords.

 

notes_c

Note: If you do not want to set the following limitations to user passwords, provide zero (0) value in these fields.

 

Password expiration (days)

Enter in this field the numbers of days after which the password will expire. A zero (0) value indicates that the password will never expire.

 

Number of history passwords cannot be re-used

Enter in this field the number of history password which cannot be re-used in logging into the system. A zero (0) value indicates that there is no restriction in using history password.

 

Number of invalid logon attempts allowed

Enter in this field the number of attempts allowed to log in using an invalid password. If a user enters an invalid password after this limit, the user’s account will be locked out. A zero (0) value indicates that there is no limit.

 

4.Select either of these checkboxes, if applicable:

 

User must change password at next login

Mark this checkbox if you want the system to require a user to change his password on the next log in. If this checkbox is marked, the system will display the Change Login Password window the next time the user logs in which allows the user to change his password.

 

User cannot change password

Mark this checkbox if you disallow a user to change his password. The user must require the assistance from their supervisor or system administrator.

 

notes_c

Note: The User must change password at next login checkbox is inaccessible if the User cannot change password checkbox is marked and vice versa.

 

5.In the Multi-Factor Authentication section, perform the following:

 

caution_c1

To activate the Multi-Factor Authentication feature, a system e-mail account must be first set up. The system will use this e-mail account as the Sender for the verification code.

 

 

5.1. Select the option that you want to implement in the system:  

 

oDisabled

This is the default option. Selecting this option configures the system to deactivate the multi-factor authentication feature.

 

oMandatory

Selecting this option activates the multi-factor authentication feature. This requires all users in the system to register or enroll an active email address for the authentication process.

 

oOptional

Selecting this option gives each user in the system the option whether or not to register or enroll to the multi-factor authentication

 

5.2. Enter in the Authentication expiration (days) field the number of days until the second factor authentication will expire.

 

5.3. In the Verification code expiration (minutes) field, enter the time in minutes that a user's verification code expires after it was sent.  

 

6.When you are ready to save the password policies, click the Save button; otherwise, click the Cancel button to disregard your changes.

 

 

 

See Also

Manage Security Settings

Log In to AccountMate

 

 

 

 

 

© 2023 AccountMate Software Corporation