Use this dialog box to configure how passwords are used.

General:

Passwords must include letters and numbers

Select this option to require passwords to include both letters and numbers, for better security.

Minimum password length

Select this option to require user passwords to have a minimum length of the value you enter in the corresponding field.

Users must change their passwords frequently

Select this option to force passwords to expire when the time you enter in the Password Lifetime field is met. Contract Management begins prompting users to change their passwords before they expire when the number of days you enter in the Expiration Warning field is met.

Users may not re-use passwords

Select this option to activate the Number of passwords to remember field, then enter the number of previous passwords that Contract Management will remember so that a user cannot use them again.

Lock user accounts after unsuccessful login attempts

Select this option to activate the Maximum number of unsuccessful attempts field to enter the number of attempts the user has to enter the password correctly. The user is locked out of Contract Management after the number of unsuccessful login attempts entered in this field is met. To unlock the user, a Contract Management administrator must clear the Disable User ID option in the User Account dialog box.

Prohibited Passwords:

A Contract Management administrator can use this tab to create a list of passwords that users cannot use, which enhances security.

• Click Add to open the New Prohibited Password Dialog Box to add a password to the list.
• Click Import to open the Upload Prohibited Passwords Dialog Box to import a .CSV file containing an existing set of words to add to the prohibited password list.

How to access this dialog box:

From the Contract Management Administration Application, click User Password Settings.

---