Admin: Password Policy - Security for Division Organizations

  • 4 minute(s) read

On the Organizations page at the division level you can configure nVoq password security settings for client-only accounts that do not have an Admin Role. 

Accounts with an Administrator Role of any kind automatically adhere to settings listed under Password Security Settings for Accounts with an Administrator Role.

Passwords settings or a division organization ONLY apply to nVoq accounts with NO Administrator Role.
These settings do NOT apply to accounts that sign in to nVoq applications using Okta or Microsoft SSO, and they do NOT apply to nVoq accounts that have an Administrator Role.

Password Strength

This parameter configures the minimum password complexity required for users to log in with an nVoq password. The range is from weak to strong. A stronger password strength increases password security. The default setting is Weak.

  • Strong: Requires at least 8 characters and must contain lowercase, uppercase, number, and a symbol.
  • Medium: Requires at least 7 characters and must contain a letter and number.
  • Weak: Requires at least 1 character. 

Reset on Initial Sign In

This parameter configures whether users are required to enter a new password the very first time they sign in to an nVoq application. Slide this toggle to off (white) to disable the requirement. The default setting is OFF (white).

Password History

Enabling password history prevents a certain number (see History Count below) of previous passwords from being reused. Slide this toggle to off (white) to allow users to re-use passwords anytime. The default settings is ON (blue).

Disabling Password History still requires that users change their password the first time they log in if Reset on Initial Sign In is enabled, and the user will not be able to reuse that password.

History Count

The History Count configures the number of previous passwords that cannot be reused. A history count of "1" means user cannot reuse the current password. A history count of "5" means the user cannot reuse the current password or the four previous passwords. The default settings is 1.

Lockout

When this setting is enabled (blue), the system will automatically lock a user account after a certain number of failed login attempts (see Maximum Failure). When disabled, the user has unlimited login attempts. The default setting is ENABLED (blue). When an account is locked it is unavailable for 15 minutes or until the password is reset. If the user attempts to login again without resetting the password during the 15 minute lockout period, the timer is reset and another 15 minute lockout begins. The user's number of failed login attempts resets to zero when the user changes their password or logs in successfully. It does NOT reset after the 15 minute account lockout period expires.

Maximum Failure

This parameter sets the number of failed log in attempts a user can make before the system temporarily locks the account. The default setting is 15. This number applies to all log in attempts across products (e.g. nVoq Voice, Mobile Voice, nVoq Administrator, Wireless Microphone) on the same system (e.g. healthcare.nvoq.com). For example, if the user tries to log in 3 times (unsuccessfully) to nVoq Voice and then tries (unsuccessfully) to log in to nVoq Administrator 2 times, the user would then have 5 failed log in attempts. If the Maximum Failure for the account is set at 5, the account would then be locked for 15 minutes. The number of failed login attempts resets to zero when the user changes their password or logs in successfully. It does NOT reset after the 15 minute account lockout period expires.

Password Expiration

This parameter configures password expiration and requires passwords to be reset after a certain number of days (see Maximum Age below). When this toggle is off (white), passwords will never expire. The default value is ON (blue).

Maximum Age

This parameter sets the number of days that an nVoq password will be valid. After the number of days entered in this box, the passwords will expire. The default value is 180 (days).

Warning Time

This parameter sets the number of days prior to password expiration that the system will notify users that their passwords are going to expire. The default value is 14 (days).

Client Inactivity Timeout

This setting does not apply to any current nVoq application.

The default value is off.

Minutes

N/A


Automatic Password Security Settings for Accounts with an Administrator Role

Accounts that have an Administrator Role (including Customer Administrator, Read Only, or Shortcut Designer) automatically adhere to the security settings listed below, regardless of what is configured for the division.

Admin Password Policy

  • Strength = Strong (requires at least 8 characters and must contain lowercase, uppercase, number, and a symbol)
  • Reset on Initial Sign In = On

Admin Password History

  • Default = On
  • History Count = 5

Admin Lockout

  • Default = On
  • Maximum Failure = 5

Admin Password Expiration

  • Default = On
  • Maximum Age (days) = 90
  • Warning Time (days) = 14

Admin Client Inactivity Timeout

This setting does not apply to any current nVoq application.

  • Default = Off
  • Minutes = 15