Password Security | Password Security can be customized per customer site. Modify the password criteria as needed, below are the minimum and maximum for each option. Minimum password length: 4 - 12 characters Password expiration: 1 - 9999 days Password reuse history: 1 - 20 passwords Maximum sign-in attempts: 1 - 20 attempts User lockout time: 1 - 9999 seconds If Activate Remember Me is checked, the user’s login is prepopulated. If Enable secret question is checked, security questions and answers can be used for password reset. The option to set your secret question/answer happens during registration or from the account settings page. If the user uses the forgotten password functionality - they are asked the secret question before the reset password email is sent. It is probably best to use this in conjunction with 'force a password change' at first login.
|