Password Policy

You can choose from a variety of options when it comes to your User's passwords. Policies can easily be changed in the Workflows section of the Settings view. Let's learn how!

Your ability to change password policies depends on your Role & Permissions.

1. Click on your avatar at the top right, then click on Settings.

   

2. Click on Workflows under Customization. 

   

3. Scroll down and click the Edit Additional Settings button.

   

4. Choose a Password Policy from the picklist. When you are done, click the Save button.

   Policy Options

   Here is a list of all of the available policy options and their settings:

   Options that include "External Identity Provider" in the name should only be chosen if passwords are being stored on an external database.

   
   

   Name	Pattern	Lockout	Expiration	Rotation	Idle Logout	Session Termination
   Standard Security Protocols	Requires a minimum of 8 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 5 failed login attempts.	Password will never expire.	New password can match old password.	Users are logged out after 01:00:00 of inactivity.	Sessions are terminated after 48 hours regardless of inactivity.
   Standard Security Protocols Or External Identity Provider	Requires a minimum of 8 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 5 failed login attempts.	Password will never expire.	New password can match old password.	Users are logged out after 01:00:00 of inactivity.	Sessions are terminated after 48 hours regardless of inactivity.
   PCI Compliant Security Protocols	Requires a minimum of 8 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 3 failed login attempts.	Password will expire after 90 days.	New password cannot match previously used 12 passwords.	Users are logged out after 00:15:00 of inactivity.	Sessions are terminated after 24 hours regardless of inactivity.
   PCI Compliant Security Protocols Or External Identity Provider	Requires a minimum of 8 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 3 failed login attempts.	Password will expire after 90 days.	New password cannot match previously used 12 passwords.	Users are logged out after 00:15:00 of inactivity.	Sessions are terminated after 24 hours regardless of inactivity.
   External Identity Provider	Requires a minimum of 8 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 5 failed login attempts.	Password will never expire.	New password can match old password.	Users are logged out after 01:00:00 of inactivity.	Sessions are terminated after 48 hours regardless of inactivity.
   PCI Compliant External Identity Provider	Requires a minimum of 8 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 5 failed login attempts.	Password will never expire.	New password can match old password.	Users are logged out after 00:15:00 of inactivity.	Sessions are terminated after 24 hours regardless of inactivity.
   PCI Compliant Security Protocols, 15 Char Min Password	Requires a minimum of 15 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 3 failed login attempts.	Password will expire after 90 days.	New password cannot match previously used 12 passwords.	Users are logged out after 00:15:00 of inactivity.	Sessions are terminated after 24 hours regardless of inactivity.
   PCI Compliant Security Protocols, 15 Char Min Password Or External Identity Provider	Requires a minimum of 15 characters including at least 1 uppercase, 1 digit and 1 symbol	Account locks after 3 failed login attempts.	Password will expire after 90 days.	New password cannot match previously used 12 passwords.	Users are logged out after 00:15:00 of inactivity.	Sessions are terminated after 24 hours regardless of inactivity.

   
   

   

   
   

5. 
   

6. Your organization's password policy has been updated!