Password Policies

The Password Policies option provides the ability to set password restrictions and login lockout policies for all users. This ensures password security in an organization.

Accessing Password Policies

Setting Password Policies

Accessing Password Policies

To access Password Policies:

  1. Select Setup in the upper right corner of the AlertBoot home page.

  1. Select Security Controls from the Administration Setup menu on the left side of the Setup screen.

  1. Then select Password Policies.

The Password Policies screen is displayed.

Setting Password Policies

AlertBoot requires you to set the following seven Password Policies.

  1. User passwords expire in

  1. Click the down arrow for "User passwords expire in"

  2. Select the length of time until all user passwords expire and must be changed. Users with the "Password Never Expires" permission are immune from this setting.

  1. Enforce password history

  1. Click the down arrow for "Enforce password history"

  2. Select the setting to save users’ previous passwords so that they must always reset their password to a new, unique password. Password history is not saved until you set this value.

  1. Minimum password length

  1. Click the down arrow for "Minimum password length"

  2. Select a setting to establish the minimum allowable length for a user password.

  1. Password complexity requirement

  1. Click the down arrow for "Password complexity requirement"

  2. You may select to have no restrictions on the complexity of the password ("No restriction") or to require a mix of alpha and numeric characters ("Must mix alpha and numeric").

  1. Password question requirement

  1. Click the down arrow for "Password question requirement"

  2. You may select to have no password question requirement ("none") or to require a password question with the stipulation that the question not contain the password itself ("Cannot contain password").

  1. Maximum invalid login attempts

  1. Click the down arrow for "Maximum invalid login attempts"

  2. This selection allows you to set the number of bad logins allowed by users before they are locked out of their machine. Subsequent accessibility to the machine will then be possible only through password recovery.

  1. Lockout effective period

  1. Click the down arrow for "Lockout effective period"

  2. This selection allows you to set the duration of the login lockout.

  3. If a user becomes locked out, he or she can wait until the lockout period expires, or the administrator can view the user’s information and click Unlock. This button is only available when a user is locked out.

  1. After setting all of the required Password Policies, click Save.