Web View Security
Enables you to define security settings, including the format of passwords used in ResourceLink, to enhance security.
To access this window, enter fast path HR97S8 and select User Control > Web Applications > Web View > Security.
Configuring password settings
When an operator creates a password, the password is checked against the settings defined in this window. The permitted settings mean that all ResourceLink passwords must have a minimum of eight characters if you are also implementing multi-factor authentication (MFA), otherwise twelve characters, and must include upper case, lower case, numbers, and special characters such as !"£$%^&*().
If you update the fields in this window so that the requirements above would not be met, the window will error on exit, advising which setting needs to be updated.
Caution: We strongly recommend that you also update the System Default Password in User Level System Fields to meet the requirements defined above.
General
Allowed Logon Attempts
ⓘ We recommend setting this to 3.
Enter the maximum number of login attempts an operator can make before they are disabled within ResourceLink.
Password Duration
ⓘ Do not force regular password expiry. This has been part of the guidance from NCSC for several years now. We recommend setting a password expiry period of at least 365 days, ideally longer.
Enter the number of days that an operator's password is valid. Once this number of days has passed, the operator's password expires and they must change their password.
This setting can be overridden at operator level using the Duration field in Password Detail.
Minimum Length
ⓘ If you have multi-factor authentication (MFA) enabled, we recommend setting this to 8 characters. If you do not have MFA enabled, we recommend setting this to 12 characters.
Enter the minimum length of password required when an operator creates a password.
Apply IP Security
This check box is displayed with a valid SSOAZURE software key. Select this check box to apply internet protocol (IP) security to all operators when they use Single Sign-On (SSO) to log in to ResourceLink via Azure Active Directory (Azure AD). This can be set at operator and profile level if required.
Character Type Checks
Lowercase, Uppercase, Numeric, Special Characters
These check boxes indicate which character types must be included within system-generated and operator passwords.
Minimum Types Required
With this value set to 4 and all four check boxes selected, i.e. Lowercase, Uppercase, Numeric, and Special Characters, all ResourceLink passwords must include upper case, lower case, numeric, and special characters such as !"£$%^&*().
Azure AD Secret
Enter the password used to authenticate the request to access your Azure AD environment. This is generated within your tenant when registering the application for SSO.
You can also request that Zellis sets Azure AD SSO to expire the browser cookie immediately once used. In this case, once the operator logs out and the browser is closed, the operator must re-authenticate when logging back in.
Buttons
Instructions
Select this button to display Maintain Web Notes, where you can enter text to assist operators with the password format. This is displayed when they are changing their password in ResourceLink.
Select this button to display Web View Security Email Configuration, where you can define properties related to security emails.
MFA Configuration
Select this button to display Multi-Factor Authentication Configuration, where you can define properties related to MFA for operator logins.
Forgot Password
Select this button to display Maintain Web Notes, where you can enter text to assist operators who have forgotten their password. This is displayed when they select the Forgotten Password button on the login page.
Login IP Security
Select this button to display Web View Login IP Security, where you can specify your organisation’s network IP addresses, which are used to determine whether the operator is allowed to use SSO to log in to ResourceLink based on their IP address. You must have the SSOAZURE software key to display the window.
MD97G102