What is the Advanced Security Strategy?

Enabling the advanced security strategy modifies the operation of the User Accounts mechanism in the following way.

User profiles become hierarchical.
Account names must be 6 characters or greater.
The first time a User Account is used the password must be changed.
The first time a User Account is used the account all properties, except the name, can be changed.
User accounts can be de-activated.
If a User Account is deleted a record of it remains in the user definition file.
Information about a failed login attempt is available in two system variables.
Failed login attempts generate an event, Attempted logon failure, that can be logged.
On reaching the maximum number of failed login attempts configured in the User Accounts Settings (default 3) a User Account is locked.
All passwords used in a project, including any that have expired or were used in deleted accounts, must be unique. An internal record is kept of the previous 1000 passwords to ensure this.

To enable advanced security strategy you must tick the property, Enable advanced security strategy in the User Accounts settings

Send us your feedback