The Password settings relate to the password Silhouette users are required to enter before logging on to Silhouette.
LDAP Integration
The settings described in this section are only relevant to user accounts which are created directly within SilhouetteCentral Admin. If a user is created / controlled via LDAP integration these settings are not applicable and it is the responsibility of the LDAP server to define and implement password reset functionality.
When the check box is ticked, users are prompted to change their password a fixed number of days after their last password change.
This setting determines how often a user's password expires. Set a value between 1 and 365 days.
This setting is only available when Enforce Password Expiration is enabled.
This setting determines the minimum number of characters a Silhouette user is required to include when setting a password. Set a value between 3 and 10 characters.
To promote more secure passwords on the system, choose longer minimum lengths.
This setting determines the maximum number of characters a Silhouette user can include when setting a password. Set a value between 8 and 30 characters.
This setting determines whether or not a Silhouette user is required to enter a password that contains at least one number and letter. Requiring both numbers and letters in passwords increases the security of the password.
Tick the box to require users to enter both numbers and letters when setting their passwords.
Note: Irrespective of this setting the user is allowed to make use of other characters such as $, %, ^, &, _ etc in their passwords.
Users may try to use their user name as their password. This may be easy to remember, but it is a security risk.
Tick the box to forbid passwords that match user names.
Users sometimes try to reuse passwords, but this practice is a security risk. To prevent a user changing their password to a previously used password, the system can check to see if the new password matches a previously used password. To enable this, tick the check box next to the Enforce Password History field, then in the adjacent box specify how many previous passwords are checked when the user changes their password. The maximum number of passwords stored is 9.
If Email Integration is enabled, passwords can be reset via email by configuring this setting on Organization Settings page. This setting can be disabled if this functionality is not desired in which case users would need to contact a system administrator to manually reset their password.