The Security page in 8x8 Configuration Manager allows you to define password policies. As an 8x8 Contact Center administrator, you can set rules on password length, formation, password duration, and common password practice for users to follow while creating their passwords. These rules are enforced on users to protect their accounts from being hacked.
To configure password policies:
- From the Configuration Menu, open Security.
- Go to the Password Policies tab.
Configure the desired settings.
The following options are available for password policies:
Password Policies -General Description Policy Options Password Expires (In days) Defines how long a password is alive. After the specified duration, the password expires and needs to be changed.
Note: Selecting Never Expires keeps the password alive as long as you desire.
- 30 days
- 60 days
- 90 days
- 180 days
- One Year
- Never expires
Enforce Password History Defines the number of previous passwords (or no passwords) to be remembered by the system. It prevents users from using the previous passwords when creating a new one.
- No passwords remembered
- 3 passwords remembered
- 5 passwords remembered
- 10 passwords remembered
Minimum Password Length Defines a minimum length for a password. Restricts agents from choosing a password less than the specified length.
- 8 characters
- 10 characters
- 12 characters
Password Complexity Requirement Defines if a password must be set with a certain complexity.
- Must mix alpha and numeric
- Must mix upper and lower case alpha and numeric
- Must contain 3 out of 4:
- uppercase alpha
- lowercase alpha
- symbols (*@&#!?)
Email system generated passwords for new agents/admins and reset Determines if a system-generated password is sent to the agents or Secondary administrators to reset their passwords. The system default is No. If you select Yes, the Reset Password button appears under Agents > General. If you click Reset Password, an email containing a temporary username and password is sent to the user.
Password Question Requirement Defines if the answer to a security question in the agent profile can be the same as the password or not.
Note: Selecting None lets an agent answer the security question same as the password.
- Answer cannot be same as password
- Click Save.
For Lockout policy, see Lock and Unlock User Accounts.
Note: The minimum password length is 8 characters. Existing agents and supervisor accounts with passwords shorter than 8 characters are not impacted until the next password change.