Configure security policy settings for your organization
This configuration aims to implement robust password protection measures and enable administrators to tailor security policies to fit the organization's requirements and risk tolerance.
To set up security policy settings for your organization, follow these steps:
- Navigate to the OneID portal and click on your user profile located at the top right corner.
- Click Settings.
- Select Security Policies from the menu.
- Click on Edit on the Security Policies page.
- Adjust and update the security policy parameters as needed.
- Click Save.
Security policy field configuration
Strengthen your organization's security by implementing password protection measures with Zuora's security policies. Set password history, length, and complexity requirements. Additionally, establish password reset procedures for enhanced security.
The following security policies are available within OneID for administrators to implement at the organizational level:
Field Name |
Description |
Password complexity |
|
Enforce password history |
|
Password Expiration |
|
Minimum password length |
Admins can define the minimum password length for the organization, prompting users to reset their password during their next login.
|
Maximum invalid login attempts |
The value can range between 3 and 10, with a default of 3 attempts. |
Lockout effective period |
Admins can set the lockout period for users to reach the maximum number of invalid login attempts, which include 5, 10, 20, 30, or 60 minutes. |
Reset password for all users (Non SSO customers) |
This feature enables the organization to reset passwords for all users with security threats or for security reasons. It forces all users to reset their passwords during their subsequent login attempts. |