Warning
WARNING: The TrackAbout MetaWiki has been deprecated and is no longer being updated.

Please visit our new TrackAbout Knowledge Base at https://supportkb.trackabout.com for the most-up-to-date documentation on TrackAbout and TrackAbout Mobile.

Password Security

From TrackAbout MetaWiki
Revision as of 14:39, 23 January 2017 by Jgullickson (talk | contribs) (Created page with "==Summary == Password security is important. It's important to keeping personal and business information safe and secure. TrackAbout provides various options to establish...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Summary

Password security is important. It's important to keeping personal and business information safe and secure. TrackAbout provides various options to establish secure password rules among your users. Here are the various Password configurations we have available:

Device Rules

  • Require Password on Login: Determines whether or not a Password is required to log into the mobile unit.
  • Minimum Password Length: When mobile Passwords are enabled, this setting determines the minimum number of characters required for a mobile Password. The length must be between 1 and 10 characters.
  • Mobile Password Format: When mobile Passwords are enabled, this setting determines the format of the Password.
    • Any - A Password may be composed of any character.
    • Alpha - Upper and lowercase alphabetic characters are allowed.
    • Numeric - A Password may only be composed of numbers.
    • AlphaNumeric - Requires a combination of both numbers and characters to be valid.
  • Mobile Password Allow Year: Allow the current year to be used in mobile Passwords.
  • Mobile Password No Trivial Passwords: Enables extra validation on mobile Passwords.
    • Must be more than 2 different characters in Passwords. EX: 1122211
    • Must not repeat a character more than twice in a row. EX: 111xxx
    • Must not contain 2 digit recurring patterns. EX: 1212xx
    • Must not contain 3 digit recurring patterns. EX: 123123
    • Must not increment or decrement for the whole Password. EX 1234567
  • Number of Historical Passwords to Keep: The number of previous Passwords to retain for a user. When changing Passwords, users' Password cannot be one of their historical Passwords.

Setting to this config to '0' will disable the historical Password check.

Website Rules

  • Send Email When User Passwords Change: When true, TrackAbout sends an email to users alerting them when their Passwords change.
  • Clicked Password Link Expiration Minutes: Minutes after the Password recovery or new user link is clicked until the link stops working. Use 0 for no expiration.
  • Password Allow Spaces And High Characters: Allow spaces and high ASCII characters in WEBSITE Passwords.
  • Password Minimum Number Of Lower Case Letters: Minimum number of lower case letters for WEBSITE Passwords.
  • Password Minimum Number Of Numbers: Minimum number of lower case letters for WEBSITE Passwords.
  • Password Minimum Number Of Special Characters: Minimum number of special characters for WEBSITE Passwords.
  • Password Minimum Number Of Upper Case Letters: Minimum number of upper case letters for WEBSITE Passwords.

Rules Applying to Both Devices and Website

  • Password Expiry Warning Period in Days: A Password expiration warning will be shown to the user starting from X days before the expiry date of the Password. Shows warnings in both the WEBSITE and Smartphone apps.
    • For the WEBSITE, displays an interstitial page upon logging in allowing the user to change their Password or defer until later.
    • For the smartphone, shows a warning on the home screen once per day and directs the user to visit the WEBSITE to change.
  • Password Link Expiration Days: Days after the Password recovery or new user link is sent until the link stops working. Use 0 for no expiration.
Retrieved from "https://meta.trackabout.com/w/index.php?title=Password_Security&oldid=5424"