Having strong passwords and changing passwords regularly is highly recommended to prevent unauthorised access to any software applications you may use.
You can establish password rules for your Online Advantage application by setting parameters for the passwords created by users as detailed below.
Change password every nn days
Enter a number of days here and users will be asked to change their password when their current password has been in use for the specified number of days.
For example, if you enter 60, users will be prompted to change their password when they log in every 60 days. This can be overridden in User Details for users that may be an exception to the general rule.
Do not allow user to re-use their last nn passwords
If you want to ensure that users enter a different password to their last password choice (or choices) when changing their password, then enter the number of passwords for the system to retain and verify against. For example, if you enter 5, then the user will have to use 5 unique passwords before being allowed to use the same one again.
Force All users to change password on next login
Select this option to force all users to change password. Users will be prompted to change their password the next time they log in. They must enter their current password before setting a new password.
(Excluding E-commerce Users)
This option works in conjunction with the ‘Force All Users to Change Password’ selection. If you don’t want to include your external e-commerce users (B2B & B2E Portal customers) then select this option.
Password Format
Set your company rules about how your password should be formatted and any mandatory requirements. You have the following parameters available to use:
- Minimum length
- Minimum number of lower case letters the password must contain
- Minimum numbers of upper case letters the password must contain
- Minimum number of numeric the password must contain
- Minimum number of symbol characters the password must contain
Forgotten Password
On the login page, there is a ‘Forgotten Password?’ link available. If a user clicks on that link and enters their user ID or email address, the system resets their password to a randomly generated 6-digit code and sends them an email with their user ID and the temporary password.
With this option you can set the sender address, subject and body of that email here. When the user receives a ‘forgotten password’ email and log in with their temporary password, they are immediately asked to set a new password for themselves.
From
Enter a valid email address that will be used as the sender’s address on the email. For example: it-dept@MyCompany.com.au.
Subject
Enter the subject for the email. For example: “New password request for Online Advantage”
Body
Enter the body details of the email. You can insert the User Id and Password into the body of the email by entering the placeholders ((USERNAME) and ((PASSWORD)) where you want the data to appear. The email will be sent in plain text format – no embedded HTML is available.
For example:
Hi there,
Your Online Advantage user code is ((USERNAME)) and temp password is ((PASSWORD)).
Log in with the temporary password and set a new password.
Regards, Online Advantage Support team.
Note: in later versions this email body is obsolete as the ‘Forgotten Password Reminder’ email has been replaced with a pre-formatted embedded HTML document used as the email body.