...
Once you enter the module, you will be able to access and configure a wide range of security parameters. Each of these parameters has a specific purpose and performs a special function by adding an additional layer of protection to the platform. The available parameters are described below.
Authentication Policies
This set of parameters helps control the user authentication process on the platform:
...
Password Expiration (days): In this field, specify the number of days during which you want the users' password to remain valid after changing it. Once the specified days have elapsed, the platform will prompt users to change their password, and they must specify a new one to access the platform. If you do not wish to set a password expiration for your users, enter the value zero (0) in this field. This parameter will help maintain security by reducing the likelihood of compromised passwords remaining valid for a long time.
Failed Login Attempts: In this field, indicate the number of allowed failed login attempts for users. A failed attempt is recorded when the user provides an incorrect email and/or password when trying to access the platform. If a user exceeds the specified number of failed attempts, they will be required to wait for a certain period of seconds before attempting to log in again. This measure is essential to prevent brute force attacks and reduce the risk of unauthorized access to compromised accounts.
Password Format
This set of parameters significantly contributes to maintaining the security of access passwords set by users on the platform. These parameters allow specifying certain types of characters and a minimum length for passwords. You can enable or disable the following parameters according to your company's needs:
...