This functionality allows you to enforce a comprehensive, password policy across your accounts. Through the password policy, you can set what the minimum password complexity is, how often it should be changed by users, and whether the new password can be the same as one of the passwords already in use.
To configure a password policy, navigate to the menu Settings-> All Settings-> Users-> Password Policy.
You can create different policies for different types of users. For example, you can create a separate policy with lower password requirements for users who use the POS system. Correspondingly, a policy for more complex passwords, for users with access to sensitive information.
By default, there is one policy - "default", which is associated with all existing users. Edit it if you wish to apply password policies to all current users.
To set up the Passcode Policies press the '+' button on the top right.
- Name (1) - Enter a name for the policy
- Expiration Period (2) - enter how many days after entering a new password, the system will require to change it to another password. If you enter 30, the system will automatically require you to change your password every 30 days. The special thing here is that this setting is only taken into account when entering a new password to determine how long it will be valid. Subsequent changes to the policy will not indicate any impact on password validity.
- Minimum length (3) - How many characters to at least require when entering a new password.
- Prevent reuse count (4) - Enter how many of the older passwords you cannot reuse. If you leave blank or enter 1, the only restriction is that the new password must be different from your current password. If you enter 5, for example, then your new password cannot be like the last 5 passwords you used.
- Complexity (5) - What the new password should be required to contain. For each of the following characters, you can specify whether or not to require: Require at least one number; Require at least one lowercase Latin letter; Require at least one uppercase Latin letter; Require at least one special character.
Note that editing a policy does not change anything on existing passwords. The policy is only considered when entering a new password - then evaluate the complexity of the new password and determine when it should expire.
If you don't want to change the default policy, you can create a new policy, then set it for users from each user's edit screen.
If you decide to enforce the policy rules for a user, you can use the button - "Change password on next login". This will require the user to enter a new password that complies with the policy.
Additionally, we have added a reminder 10 days before the password expires so you can change it at a convenient and not busy time. The password change screens and passcode recaps have been redesigned and are also new.