Versiones comparadas

Versión anterior 1

changes.mady.by.user Laura Ortiz

Guardado el

comparado con

Nueva versión Actual

changes.mady.by.user Laura Ortiz

Guardado el

Clave

  • Se ha añadido esta línea.
  • Se ha eliminado esta línea.
  • El formato se ha cambiado.
Tabla de contenidos
minLevel1
maxLevel6
outlinefalse
stylenone
typeflat
printablefalse

In order to provide greater security for the information stored in Sagicc, both for your business and your customers, we have developed the Security Policies module. This module offers a series of configuration parameters that will allow you to enhance the security of the Sagicc working environment, ensuring that only authorized individuals have access to the information. This way, the risks of vulnerability, such as compromised access passwords, among other key security aspects, are reduced.

...

Once you enter the module, you will be able to access and configure a wide range of security parameters. Each of these parameters has a specific purpose and performs a special function by adding an additional layer of protection to the platform. The available parameters are described below.

security2.png

Authentication Policies

This set of parameters helps control the user authentication process on the platform:

...

  • Password Expiration (days): In this field, specify the number of days during which you want the users' password to remain valid after changing it. Once the specified days have elapsed, the platform will prompt users to change their password, and they must specify a new one to access the platform. If you do not wish to set a password expiration for your users, enter the value zero (0) in this field. This parameter will help maintain security by reducing the likelihood of compromised passwords remaining valid for a long time.

  • Failed Login Attempts: In this field, indicate the number of allowed failed login attempts for users. A failed attempt is recorded when the user provides an incorrect email and/or password when trying to access the platform. If a user exceeds the specified number of failed attempts, they will be required to wait for a certain period of seconds before attempting to log in again. This measure is essential to prevent brute force attacks and reduce the risk of unauthorized access to compromised accounts.

security3.png

Password Format

This set of parameters significantly contributes to maintaining the security of access passwords set by users on the platform. These parameters allow specifying certain types of characters and a minimum length for passwords. You can enable or disable the following parameters according to your company's needs:

...