1. GEVME account password policy

Minimum of 12 characters and contain at least:
1 x Upper case letter
1 x Lower case letter
1 x Digit
1 x Symbol

Disallow
- Using user id as passwords
- Common passwords: https://en.wikipedia.org/wiki/List_of_the_most_common_passwords

The above mentioned policy applies to newly-created GEVME accounts, or those users trying to change their password and those who click on "Forgot passwords".

Places where it is implemented:
- Reset Password


- Admin Console > Account > Security



- New account > Create password

2. Unsuccessful Login Attempts

If there are repeated failed attempts to authenticate to a single account, your account will be temporarily locked for 1 hour for security purposes.

 

3. Password Recycling Prevention

Gevme prohibits the reuse of any previously utilized passwords.


4. Gevme's organisation security setting

"Security" options allows admin to force users to change password every 1 - 3 - 6 - 12 months. 

Only Admin of the Organisation will see this option.


Admin Console > Organisations > Organisation Details > Security


Depending on your organization's security settings, you'll receive a prompt to change your password after a certain duration since your last password update, as indicated on this screen.