Strict Passwords for User Accounts

Donny K.
Donny K.
  • Updated

 

Overview:

The Strict Passwords feature allows for your business to require all employee users to create strict passwords for their Gingr accounts. When this feature is enabled, staff user accounts will be required to have passwords with at least 8 characters, 1 lower case letter, 1 upper case letter, and 1 number or special character.

Users will also be required to change their password a minimum of once every 90 days. This setting will be shipped as disabled, so users can adopt this feature at their convenience. Down the road, Gingr will require businesses to use this feature, but currently this is optional!

 

Settings:

Current password settings:

Navigate to: Admin » User Account Settings » Password expiration days.

The number entered in this field will require that employee users reset their passwords after this amount of days.

 

New password settings:

Navigate to: Admin » User Account Settings » Enable strict password

If enabled, staff user accounts will be required to have passwords with at least 8 characters, 1 lower case letter, 1 upper case letter, and 1 number or special character. Users will also be required to change their password a minimum of once every 90 days.

 

Interaction between settings:

If Enable strict password is enabled, the system will override (on the backend) the number set in the password expiration days setting if it was greater than 90 days.

Examples:
1. App currently requires new passwords after 365 days. When they enable the strict password setting, their users will be required to update their passwords after 90 days because 365 is greater than 90.

2. App currently requires new passwords after 45 days. When they enable the strict password setting, their users will still be required to update their passwords after 45 days because 45 is less than 90.

 

Display changes:

All password entry fields in the app will now have an unmask password button. When this button is depressed the system will display the input password. 

password_reveal.gif

 

Any places within the app where users can set or reset their passwords, the user will see the password requirements and a progress meter showing if they have reached the password requirements. They will get an error message if they try to move forward without completing all requirements.

strength_indicator.gif

 

If a user is within 15 days of their current password expiring, they will see a banner in the app with a countdown and an option to reset their password early.

expire_banner.png

 

Was this article helpful?

0 out of 3 found this helpful

Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.