As a Certify Administrator, you are able to configure a minimum password strength. Once configured, all users creating or updating their Certify password must meet the minimum requirements for password strength.
This article shows you, a Certify Administrator, how to manage your company’s minimum password strength.
Step 1: On your Certify homepage, click Configurations.
Step 2: Click Security Settings.
Step 3: Choose your company’s Minimum Password Rating. The Minimum Password Rating defines the level of complexity each password must achieve to be a valid password. The 4 levels are:
- Better: 3 password conditions met.
- Strong: 4 password conditions met.
- Stronger: 5 password conditions met.
- Strongest: 6 password conditions met.
The password strength conditions are:
- at least 6 characters (required)
- at least 8 characters
- one lowercase letter
- one uppercase letter
- one numeric character
- one special character: !@#$%^&*()_+=,.<>?;:/
For example, the password “Certifyrocks!” would be considered a “Stronger” password because it meets 5 of the 6 strength conditions (at least 6 characters, at least 8 characters, an uppercase and lowercase letter, and a numeric character).
Please Note: The Minimum Password Rating will only apply to passwords created or updated after the rule has been saved.
Step 4: If desired, enter an email address or addresses to be notified when a user records a failed login attempt.
The users listed will be sent a daily notification of failed login attempts. The system will send one notification per day, even if there are no failed login attempts.