Knowledge Base Knowledge Base Settings Statements

            ProviderSuite Password Policies

            All ProviderSuite password settings are stored in the table PA_Settings of the PAAdmin DB.

            This table has the followings fields:
            Password_Length contains the minimum number of characters in the password.

            Password_Update_Freq contains the number of weeks corresponding to the password expiration time.

            The date the user performed the last password update is stored in the field Last_Password_Change in the Master_Users table of the PracticeAdmin DB. For example, if the date of the last password update is 01/01/2012, then the date when the password is due to expire is calculated by the following way: 01/01/2012+(Password_Update_Freq * 7 days).

            Password_Expire_Reminder_Period defines the period in days before the password expiration date when the user should be warned of the upcoming password expiration. Within this period a warning related to the password update is shown to the user when they attempt to login either to the website or Client. 
            The displayed dialog suggests two options: 
            1. to continue working with the old password; 
            2. to update the password having specified the new one. 

            Inactivity_Period is the number of days before the user is marked as disabled in case no login attempts have been made within this period. The date of the last user login to the system is stored in the field Last_Login in the Master_Users table of the PracticeAdmin DB. For example, if the last login date is 01/01/2012 then the date the user gets the disabled is calculated this way: 01/01/2012+Inactivity_Period days.

            Password_History_Number - the number of the last user passwords that are not allowed for the password update. For example, if Password_History_Number=4 then the new password should differ from the ones used within the 4 last password updates. 

            In case the password has expired or the user gets disabled, the system suggests the user to contact the practice manager to reset the password.

            Passwords do not contain only digits or only letters, all passwords must contain a combination of alpha and numeric characters. If you specify a password containing special symbols (for example @,#,%,'," etc.) or a password containing only letters or only digits, such password will not be valid. 

            In case Master_Users.Password_Reset field of the PracticeAdmin DB contains the value '1', then the password appears to be in the reset status and during the next user login attempt the system will require password update.
            Updated: 18 Jul 2017 11:22 AM
            Help us to make this article better
            0 0