Understanding the Password Policy
By default, LiveVault Online Backup Service uses the following MyLiveVault password
policy:
Passwords must be a minimum of any four characters.
MyLiveVault will recommend a user choose a password that is at least 6
characters, and includes at least one letter and number; however, this is not a
requirement and is not enforced by MyLiveVault. Users can reuse passwords without restriction. Users can keep their passwords without any password age restrictions. A user who has five failed login attempts within five minutes is automatically
locked out for five minutes.
However, you can set stricter password policy for your company account. For
example, companies in some industries such as finance are required to follow
more stringent industry standards.
The
following password policy options are available. You can choose to use all of
these options or a subset that is appropriate for your company.
| Select this option... |
To... |
| Passwords cannot be re-used within 12 changes |
Keep a history of each user's last
twelve passwords. The history will begin with the user's current password when this option is
selected. Users will be prevented from reusing these passwords. |
| Passwords must be changed every n days |
Keep password ages and expire passwords after they reach the
specified age. The pre-defined value is 30 days; you can type a different
number in the text box to set a different age limit.
Users will be required to change their passwords when they next log in
following the password expiration date. |
| Enforce strict password rules (8 characters; must
include non-alphabetics) |
Require strong passwords. A password must be eight characters, with at least one letter and at least one
non-alphabetic character (such as a number).
After setting this password option, all users will be required to change
their password to meet this criteria the next time they log in to
MyLiveVault. |
| Disable a user after 3 failed login attempts |
Automatically disable and lock out
a user from MyLiveVault after the user fails to successfully log in three
times in a row within a five minute period. Once disabled, a user cannot log in to MyLiveVault
until the user account has been manually re-enabled (by an authorized user).
A failed login attempt can occur if a user:
Types an incorrect password Leaves the password field blank Attempts to login when the user account is already disabled/locked out Attempts to login when the user is not authorized to log in to
MyLiveVault (that is, the user is set up as a billing/administrative user
only and has not been given a password for MyLiveVault).
|
The password policy is global for your company account and
affects all users for the account.
It cannot be tailored for specific users. The individual settings take effect as specified in the table above.
Related Information
Managing Your Company Account: An Overview
|
