Enhanced authentication provides an additional layer of security compared to the default authentication type, allowing you to disable users automatically after a certain number of unsuccessful login attempts or to set a password expiry interval. For maximum security, you should always opt for enhanced authentication instead of the default authentication type.
Procedure
- In WorldServer, go to
- In the Authentication Type list, select Enhanced.
- Under Enhanced Authentication Configuration, do the following:
- Select the User must change password on first login check box if you want users to change their password when they log in to WorldServer for the first time.
Note: The users whose accounts you created before you configured enhanced authentication will also have to change their password the first time they log in again to WorldServer.
- In the Disable user after consecutive unsuccessful login attempts box, specify how many unsuccessful login attempts you want users to have before the system automatically disables them.
- In the Password expires after (days) box, specify how many days each user's password is valid.
- In the Before password expiration, warn user at login (days) box, specify how many days in advance should the system inform users that their password is about to expire.
- In the Allow password reuse after (days) box, specify how many days can pass before users can reuse previous passwords.
- Select Save.