Password Settings allow you set security requirements for the platform's passwords. To access Password Settings, go to Admin > Registration > Password Settings. Consult your IT or network security admin on their requirements before changing these settings. Make sure to click Save Changes (bottom of the page) after changing any settings.
Note: These Password settings only apply to local Dynamic Signal accounts, not to accounts created via Single Sign-On (SSO).
The Requirements setting has four options
- Minimum length of one characters
- Does not contain < or >
- Adds at least one uppercase letter
- Adds at least one lowercase letter
- Adds at least one number
- Adds at least one special character
When changing the password requirements,the box to force all of your members to change their passwords at next sign in is automatically checked. This includes for members whose passwords already conform. The Expiration time for your Members' passwords can be set to either Never, or after 30, 60, 90, 180, or 360 days.
You can set the Number of Attempts a Member can make with an incorrect password before the Member is locked out of the account to either Never, or between 1 and 8 attempts. You can set the specific encryption Key Derivation Function to determine how passwords are stored in the database.
Note: Passwords are never stored in plain text, and are always encrypted by default.