Administrative Functions / Authentication and Password Policy Settings¶
Administrators can adjust the authentication and password policy settings for MAGIQ Documents.
To view or change the Authentication and Password Policy Settings perform the following.¶
- Navigate to the MAGIQ Documents "Control Panel".
- Click Authentication and Password Policy Settings.
- The "Authentication and Password Policy Settings" window will appear.
The "Authentication and Password Policy Settings" window contains the following information:
[WEB.CONFIG]¶
The setting that appears in the WEB.CONFIG section are set at the time of installation and are of a Technical nature.
To modify any of these settings you will need to access and update the web.config file in your \Site folder.
Note
Please contact a MAGIQ Documents representative prior to editing any settings in the web.config file.
NT Authentication Domain¶
States which Windows Authentication domain is being used.
Login tracking¶
Used for user login auditing. If you wish to log successful or unsuccessful login attempts check the appropriate check boxes. If you wish to prevent automated login attempts, you can specify a delay that will be in effect between each login attempt. This can be specified in milliseconds.
Track successful logins¶
Nominate whether you want to keep track of successful login attempts.
Logs for successful logins are stored in the \Logs\Logins folder
Track unsuccessful login attempts¶
Nominate whether you want to keep track of unsuccessful login attempts
Logs for unsuccessful logins are stored in the \Logs\LoginAttempts folder
Apply delays between each login attempt¶
A delay (specified in milliseconds) can be applied between each log in attempt.
If a user's log in fails, the time specified here is how long they will have to wait until they can try again.
Password Policy¶
This only applies to MAGIQ Documents authenticated users and not user who are authenticated using LDAP or using single sign on.
Specifies the password policy you wish to have in effect.
Check the appropriate check boxes to reflect your preferred password settings.
Password expiration period (in days)¶
Password will expire in the given number of days
Minimum Password Length¶
Password needs to be greater than the number of characters specified.
Passwords must include alpha characters (Aa-Zz)¶
Password must include alpha characters
Passwords must include numeric characters (0-9)¶
Password must include numeric characters
Passwords must include special characters ~!@#$%^ & *()-_+=¶
Password must include special characters.
Password cannot be the same as e-mail address¶
Password should not include the users email address.
Password cannot be the same as user name¶
Password cannot match the users name.
Check weak password list¶
New passwords that are entered will be checked against the weak password list. This can be located at the following location C:\Config\weakpwdlist.txt.
Passwords entered that appear on the weak password list will not be accepted.
Re-prompt user for password for the following actions (Does not apply to Native Windows Authentication)¶
Choose which selected actions in MAGIQ Documents where a password re-prompt is required to carry out the operation. This creates an addition layer of security.
Delete libraries¶
Users will be prompted to re-enter their password when deleting libraries - Recommended.
Delete documents or folders¶
Users will be prompted to re-enter their password when deleting documents or folders - Recommended.
Delete users¶
Users will be prompted to re-enter their password when deleting users - Recommended.
Change security¶
Users will be prompted to re-enter their password when changing security - Recommended.
Change owners¶
Users will be prompted to re-enter their password when changing ownerships - Recommended.
Change classification status¶
Users will be prompted to re-enter their password when changing classifications statuses - Not used.
Approve / Reject Decision :¶
Users will be prompted to re-enter their password when approving/rejecting a workflow - NOT Recommended.
Role Restrictions¶
Library Managers can edit polices¶
This is a global setting. When checked, Library Managers can edit library policies, add / remove library members and view library statistics for Libraries that they have access to.