Documentation Version: er2.0.28-docs-1.1

Security and Compliance Policies

Security and compliance policies determine the rules that apply to all users that log onto the ER2 Web Console. Global Admin or System Manager permissions are required to configure these settings.

The following settings can be configured in the USERS AND SECURITY > SECURITY AND COMPLIANCE page:

Password Policy

This section explains the password policy settings available for managing user passwords.

Setting Description for <Setting> = On
Password Expiration Users are forced to change their password every 90 days.
Restrict Reuse Users are not allowed to reuse the previous 5 passwords when prompted to change or reset their passwords.
First Login Reset Users are required to change their password when logging on to the Web Console for the first time.
Password Complexity Requirements Minimum complexity requirements is enforced for user passwords. Passwords must be at least 8 characters in length including 1 uppercase character, 1 lowercase character and 1 number.

If this setting is Off, ER2 by default requires passwords to be at least 8 characters in length and contain a mix of characters and digits.

Account Security

This section explains the account security settings available for managing user accounts.

Setting Description for <Setting> = On
Locked Out

Users are locked out after 6 unsuccessful login attempts. Password reset option will not be available when the account is locked out.

Users have to wait for 30 minutes for the account to be unlocked automatically. User can also request a Global Admin or System Manager to manually unlock the account.

See Optional User Account Settings for more information.

Session Timeout Users are automatically logged out of their session in ER2 Web Console after 15 minutes of inactivity.
Two-factor Authentication Enforce two-factor authentication for all user accounts. See Two-factor Authentication (2FA) for more information.

Legal Warning Banner

You can set a legal warning message to be displayed before a user can log onto the Web Console. Users are required to read and accept the terms described in the message before they can proceed to authenticate their login.

Enable the Legal Warning Banner

To enable the legal warning banner:

  1. In the USERS AND SECURITY > SECURITY AND COMPLIANCE page, go to the Legal Warning section.
  2. Click on Edit to customise the following fields for the legal warning message:
    SettingDescription
    Header

    Header for the legal warning banner. The character limit for the text is 32.

    IMPORTANT

    Message

    Content of the legal warning message.


    WARNING! Access to this system is restricted to those individuals with specific Permissions. If you are not an authorised user, disconnect now .Unauthorised access to this system is forbidden and will be prosecuted by law.
    Button

    Text to be displayed on the button that users have to click on before proceeding to log onto the Web Console. The character limit for the text is 10.

    I ACCEPT

  3. Once done, click on Save to update the legal warning message content.
  4. Set the toggle button to On to enable the legal warning message to be displayed each time a user attempts to log onto the Web Console.

Disable the Legal Warning Banner

To disable the legal warning banner:

  1. In the USERS AND SECURITY > SECURITY AND COMPLIANCE page, go to the Legal Warning section.
  2. Set the toggle button to Off to disable the legal warning message.
    The values in the legal warning banner fields are kept even when the Legal Warning setting is set to Off.