Defining Password and Session Policies

You must have rights to modify password policies.

You use this procedure to set the rules that user passwords must fulfill and to define the session idle timeout.

  1. On the System Configurator main screen, choose System Management > Authentication Policy.
  2. In the Password Policy block, define the following:
    Table 1. Password Policy
    Field Description
    Maximunm Failed Logon Attempts Enter the maximum number of times users can attempt to log in to an application before the account is locked. The default value is 5.
    Lock Duration Define how long the user account is locked. The default value is 30 minutes.
    Password Expiry Enter the time when the password expires. The default value is 365 days.
    Minimun Password Length Define the minimum length for a password. The default value is 16 characters.
    Initial Password Must Be Changed Select this option if you want that users must change the password set by the administrator. This is selected by default. The application prompts users to change their passwords when they log in for the first time after the administrator has set or changed the password.
  3. In the Session Policy block, enter the timeout values for the administrator (System Configurator) and Web Client (Online Monitoring).

    The default value is 3 hours.


    If you change the value of Administrative Session Idle Timeout, contact Sinch support as the change will not take effect without a server restart.

  4. Save your entries.