Admin: Password Policy - Security for Division Organizations

  • 4 minute(s) read
Prev Next

On the Organizations page at the division level you can configure nVoq password security settings for client-only accounts that do not have an Admin Role. 

Accounts with an Administrator Role of any kind automatically adhere to settings listed under Password Security Settings for Accounts with an Administrator Role.

Password Policy

A client-only account signing in with an nVoq username and password will follow the password settings configured at the division level.
If the Assessment Suggestions and Form Filling option is enabled for the tenant, all accounts in the tenant require a strong password.
All accounts with an Administrator Role require a strong password.
Accounts that sign in to nVoq Voice with Microsoft or Okta SSO do not adhere to this policy.


Password Strength

This parameter configures the minimum password complexity required for users to log in with an nVoq password. The range is from weak to strong. A stronger password strength increases password security. The default setting is Weak.
Note: When Assessment Suggestions and Form Filling is enabled at the tenant level, "Strong" is the only available option in this menu.

  • Strong: Requires at least 8 characters and must contain lowercase, uppercase, number, and a symbol.
  • Medium: Requires at least 7 characters and must contain a letter and number.
  • Weak: Requires at least 1 character. 

Reset on Initial Sign In

This parameter configures whether users are required to enter a new password the very first time they sign in to an nVoq application. Slide this toggle to off (white) to disable the requirement. The default setting is OFF (white).

Password History

Enabling password history prevents a certain number (see History Count below) of previous passwords from being reused. Slide this toggle to off (white) to allow users to re-use passwords anytime. The default settings is ON (blue).

Disabling Password History still requires that users change their password the first time they log in if Reset on Initial Sign In is enabled, and the user will not be able to reuse that password.

History Count

The History Count configures the number of previous passwords that cannot be reused. A history count of "1" means user cannot reuse the current password. A history count of "5" means the user cannot reuse the current password or the four previous passwords. The default settings is 1.

Lockout

When this setting is enabled (blue), the system will automatically lock a user account after a certain number of failed login attempts (see Maximum Failure). When disabled, the user has unlimited login attempts. The default setting is ENABLED (blue). When an account is locked it is unavailable for 15 minutes or until the password is reset. If the user attempts to login again without resetting the password during the 15 minute lockout period, the timer is reset and another 15 minute lockout begins. The user's number of failed login attempts resets to zero when the user changes their password or logs in successfully. It does NOT reset after the 15 minute account lockout period expires.

Maximum Failure

This parameter sets the number of failed log in attempts a user can make before the system temporarily locks the account. The default setting is 15. This number applies to all log in attempts across products (e.g. nVoq Voice, Mobile Voice, nVoq Administrator, Wireless Microphone) on the same system (e.g. healthcare.nvoq.com). For example, if the user tries to log in 3 times (unsuccessfully) to nVoq Voice and then tries (unsuccessfully) to log in to nVoq Administrator 2 times, the user would then have 5 failed log in attempts. If the Maximum Failure for the account is set at 5, the account would then be locked for 15 minutes. The number of failed login attempts resets to zero when the user changes their password or logs in successfully. It does NOT reset after the 15 minute account lockout period expires.

Password Expiration

This parameter configures password expiration and requires passwords to be reset after a certain number of days (see Maximum Age below). When this toggle is off (white), passwords will never expire. The default value is ON (blue).

Maximum Age

This parameter sets the number of days that an nVoq password will be valid. After the number of days entered in this box, the passwords will expire. The default value is 180 (days).

Warning Time

This parameter sets the number of days prior to password expiration that the system will notify users that their passwords are going to expire. The default value is 14 (days).

Client Inactivity Timeout

This setting does not apply to any current nVoq application.

The default value is off.

Minutes

N/A


Automatic Password Security Settings for Accounts with an Administrator Role

Accounts that have an Administrator Role (including Customer Administrator, Read Only, or Shortcut Designer) automatically adhere to the security settings listed below, regardless of what is configured for the division.

  • Password Strength = Strong (requires at least 8 characters and must contain lowercase, uppercase, number, and a symbol)
  • Reset on Initial Sign In = On
  • Password History = On
    • History Count = 5
  • Lockout= On
    • Maximum Failure = 5
  • Password Expiration = On
    • Maximum Age (days) = 90
    • Warning Time (days) = 14
  • Client Inactivity Timeout = Off  - This setting does not apply to any current nVoq application.
    • Minutes = 15