Password Schemes can be used with Public Sign In Configurations for public-facing applications or extensions. A password scheme is not required when using a public sign in configuration; however, this optional tool allows administrators to exercise greater control over password policies when desired.
When you create a Password Scheme you can set the minimum password criteria such as length, character requirements, defined expiration and lockout periods, and control of password re-use.
- Public Password Scheme Configuration
- Applying Public Password Schemes
- Public Password Scheme Security
Public Password Scheme Configuration
Add a Public Password Scheme
To configure a new Password Scheme:
- Navigate to the Public Password Schemes page and click Add. The Add Public Password Scheme window opens.
- Complete the password scheme fields as needed. Required fields are indicated below.
- Description (required): Enter a name for the password scheme.
- Requires Number: Passwords must contain at least one number when checked.
- Requires Lower Case: Passwords must contain at least one lower-case letter when checked.
- Requires Upper Case: Passwords must contain at least one upper-case letter when checked.
- Requires Symbol: Passwords must contain at least one symbol when checked.
- Allow Consecutive Characters: When checkbox is checked, passwords can contain three or more identical, consecutive characters. For example, nnn.
- Minimum Length (required): Passwords must have at least the number of characters specified. The software enforces a minimum value of 4 characters.
- Maximum Length (required): Passwords cannot exceed the number of characters specified. The software enforces a maximum value of 16 characters.
- Password History Count: The number of unique passwords required before a password can be re-used. The maximum value is 10.
- Password Expiration Period: The number of days after which the password expires. The maximum value is 365. If zero is entered, the password will not expire.
- Reset Link Expiration Period (required): The number of minutes after which the password reset link expires. The minimum value is 1. The maximum value is 1,440.
- Lockout Max Failed Attempts: The number of failed login attempts before the user is locked out.
- Lockout Period: The number of minutes a user is locked out after reaching the Max Failed Attempts limit. The maximum value is sixty.
- Click OK. The password scheme is saved, and the Add Password Scheme window closes.
Edit a Public Password Scheme
If your organization decides to change the password requirements for a public facing application, you may want to change an existing password scheme.
To edit a Password Scheme:
- Navigate to the Public Password Schemes page and find the password scheme you would like to edit.
- Right-click on the appropriate row and select Edit. The Edit Public Password Scheme window opens.
- Edit the password scheme fields as needed.
- Click OK. The password scheme changes are saved, and the Edit Password Scheme window closed.
Delete a Public Password Scheme
If your organization decides a public password scheme is no longer required, it is possible to delete a password scheme if it not in use on a Public Application configuration (Registration, Online Space Booking, Exhibitor Portal and so on). Deleting password schemes which are no longer in use is an effective way to maintain a clean database.
To delete a Password Scheme:
- Navigate to the Public Password Schemes page and find the Password Scheme you would like to delete.
- Right-click on the appropriate row and select Mark for Delete. A red delete icon will show beside the row to be deleted.
- Click Save. The password scheme is deleted. If a warning shows, you may need to remove the password scheme from all public sign in configurations before being able to delete the scheme.
Applying Public Password Schemes
For a Public Password Scheme to be effective on a public facing application, the appropriate password scheme needs to be assigned to the Public Sign In Configuration used on the public facing application configuration.
For example, if your Online Space Booking (OSB) configuration uses a public sign in configuration called Sign In - OSB, the appropriate public password scheme should be assigned on the Sign In - OSB public sign in configuration for it to have an effect on the OSB application.
For more information about assigning public password schemes, see Sign In Configurations for Public-Facing Applications.
Public Password Scheme Security
It is important that access to Public Password Schemes is restricted to only the necessary users; in most cases, this responsibility sits with a System Administration and their back-up users. The following System Access Privilege can be used to restrict who can add, view, and edit Password Schemes.
Allow Access to Password Schemes
This access privilege is used to determine if a user has access to Password Schemes. Users not assigned to this privilege will not be able to view, add, edit, or delete a Password Scheme.
Comments
4 comments
How do we change the Password Expiration Period for Users in the system?
1 upvotes
Hi Nina,
For licensed users, refer to the Password Policy article for guidance.
Regards,
Sam
0 upvotes
Hi Sam,
Thank you. We have the Universal settings in the Site configuration, but the users have the individual setup as well that we were shown when it was created. So, this one user's settings somehow has a typo with him having to sign in a new password every 3 weeks instead of 3 months. That's what I don't see on the User side or in my Support searches.
0 upvotes
Hi Nina,
I recommend entering a ticket with our Support Services team so that they can analyze the configuration and provide specific instructions.
Regards,
Sam
0 upvotes
Please sign in to leave a comment.