Explanations of password parameters
The table below describes each password parameter and, when applicable, the impacts that your choices have on security.
|
Password parameter |
Explanation |
|
At least one character of this type in password |
You can require users to enter at least one character of a certain type in the password. This character can be alphabetical, numeric, or one of many special characters, including the following: period (.), dash (-), underscore ( _ ), forward slash (/), backward slash (\). Passwords with mixed characters are more difficult for unauthorized users to access. These are your options for this field:
Note that if multiple character types are included in an option, then the user must enter all. For example, if you select Alpha, Numeric, Special, a user could fulfill the requirement by entering this password: 456/D25. |
|
Minimum password length |
You can select between 1 and 10 for the minimum number of characters that a user must enter in a password. Keep in mind, if you select a low number, this decreases the potential number of password combinations, which in turn decreases the level of security. |
|
Password case requirement |
You can require users to include both upper and lower case in their passwords. Passwords with mixed case are more difficult for unauthorized users to access. For example, if you select Mixed Case, a user could fulfill the requirement by entering this password: SanDiego. If you select None, users can use mixed case or only one case in their passwords. |
|
Password cannot contain employee ID or user ID |
If you turn on this check box, then a user cannot enter a password that is identical to the employee ID or user ID. This minimizes the risk of an unauthorized user “guessing” that the password is identical to the login name and thus gaining access. Selecting this option also prevents users from entering a password that contains their employee ID or user ID in any part of the password. Let’s say that an employee has an ID of ABCD. If you turn on this check box, then the employee would not be able to change his/her password to any of the following. ABCD 1ABCD ABCD23 This parameter is case-sensitive. For example, if you turn on this check box, a user could have the ID MassEntry2, but the system would allow him/her to enter the password massentry2. |
|
Number of days allowed for password reuse |
You can enter the number of days before someone can reuse a previously used password. If you enter 0 in this field, this does not allow someone to use the same password twice in a row. Regardless of your setting here, the system always restricts users from changing a password to the most recent password. If you leave the Number of days allowed for password reuse field blank, then users can never reuse a password. |
|
Hide employee password reset button |
You have the option to remove the Reset Password to field and Reset link from the Employee Details screen and from the User ID Setup screen. By default, the reset options appear on these screens. You may want to hide the reset options if your company uses LDAP, .NET trust, or external authentication. In these cases, you do not maintain passwords in the JAMIS e-timecard administration application, and regardless of your setting for this parameter, the reset password option does not appear in the following places.
|