The
Access screen displays parameters that may be used to define terms for different security items on the Portal.
- Password Requirements: DB Precision does not by itself have minimum password requirements. The default setting is a minimum length of 6 characters. You may choose to require minimum requirements for any or none of the options shown.
-
Required After First Login:
You may choose to require items from a user upon their first login to the Portal.
Note: if you do not choose to require an item, a user may still choose to provide the item in the My Security tab.
- Email: Checking this box will require a user to provide an email address.
- Security Question: Checking this box will require a user to provide an answer to one of eight pre-populated security questions.
- Updated Password: When creating a User ID for a participant, a password is generated for the user. Checking this box will require a user to provide an updated password.
- Two-factor Authentication - Participants/Sponsor Contacts:Choose whether to use two-factor authentication in any of the circumstances listed. Also determine whether to allow Device Trusting and if so, for how many Ddys and hours.
-
Prohibited Security Text for Participant Users:
You may choose to prohibit particular sequences of characters from a user's email or password. These sequences can be entered here, separated by semi-colons.
Prohibited text is not case-sensitive; entering a word will disallow the word, regardless of capitalization of any of the letters.
-
Email:
A common use of this feature is prohibiting users from using their employer's email address. In the event that a user terminates from the company, they would likely lose their access to this email.
Disallowing use of this email address makes it more likely that the user will have access to communications through employment and retirement. Simply type the domain name of the employer (i.e. abccompany.com) to do this.
- Password: If there are certain words or phrases (i.e. "password") that you would like to disallow from users' passwords, you may enter them here.
- Prohibit portal user's first name/last name/User ID in passowrd: these checkboxes will disallow the specified item from being allowed in a user's password.
- Invalidate existing emails containing prohibited text: If a user's e-mail contains any of the prohibited items, the next time they sign on to the Portal they will be prompted to provide a different email that does not include the word or sequence.
-
Message Displayed for Denial of Portal Access:
If a user has their account disabled, or portal access has been turned off by a sponsor, a message will display to them.
You can customize the message in this text box.
