Frequently Asked Questions

Answers to many common questions asked for administrative and compliance teams can be found here.

What is the user password policy?

User passwords must meet the following requirements:

• Contain 10 or more characters, up to 64 maximum.
• Contain at least one of each of these: lowercase, uppercase and numeric character
• Must pass other password complexity checks (e.g. no common passwords like “Password123”)

Additionally, user accounts will lock after 6 consecutive failed password attempts. Administrators will need to unlock their account before they can attempt to login again.

Are additional authentication factors (2FA/MFA) required?

Individuals can set up a second authentication factor under their My Settings in the Authentication tab. Organizations can optionally require all of their users to utilize 2FA.

What is the web user session timeout?

Web sessions timeout every 4 hours, requiring the user to re-authenticate.