IAM Password Policy Overview

Read and review the section below to understand the IAM Password policy.

Passwords 

Password protection is a primary safeguard protocol used to restrict access to your organization portal and the data stored within the portal to authorized users. 

Previously Used Passwords

As part of the password reset process, users will not be allowed to use previously used passwords. To support this requirement, the Ushur Platform caches hashes of the last 5 passwords set by the user and uses those hashes for comparison with the current password hash set.

Password Expiration

The Ushur Platform supports time-to-live for passwords set by the user to 90 days. This helps prevent an account breach using passwords that may have been compromised. The Ushur platform will require the user to change their passwords every 90 days, this will occur when the user attempts to log in to their organization’s portal.

Number of Attempts

To limit attempts at guessing passwords and reduce the susceptibility of an account breach, the Ushur platform proactively locks the user’s account following 5 wrong password login attempts in 30 minutes. Users can reach out to their organization’s portal support via email to request an unlock. Then, the portal administrator can unblock the account and require the user to reset their password.