Account Policy Settings

Use this section to set the validity dates for your passwords.

• Password minimum lifetime: Specify the minimum number of days to retain the password. You can change your password thereafter.
• Manage how often passwords expire: Specify the number of days after which the password should expire. Password expires at 12:00 AM on the expiry date.
• Lock account if inactive for: Specify the period of time for which the account may remain inactive.
• Sign-in attempts before account is locked: Specify how many incorrect sign-in attempts a user may be allowed before the user's account is locked. By default, 3 attempts are allowed.
• Send password expiration notice: Specify how long before password expiry a user should be notified. By default, the expiration notice is sent 3 days in advance.
• Prevent previous passwords: Specify the number of previous passwords that must not be used.
• Enable One Time Password (OTP): As an extra security measure, select this check box to receive an OTP in your mailbox for logging into the application. Specify the OTP validity time( in minutes). If the checkbox is not selected, users will not receive the OTP and can log into the application directly.
  Note: The OTP option is not valid for the Active Directory Federation Services (ADFS) authentication.

Account policy settings, except the OTP feature, do not apply to users assigned the Administrator role.