You can configure security features for user accounts using the options available under Account Security Options in the Security Options applet. Set up the options to limit iSAMS access to active users, force passwords to include more complex characters and limit the number of attempted logins.
Access these options in the Security Options applet from Control Panel.
The following options are available to you:
- Account Disable & Lock Options. Set options to disable and/or lock user accounts after a number of unsuccessful attempted logins.
- Account Login & Logout Options. Set options to change how users log into iSAMS, allow them to log into multiple devices at the same time and allow administrator access to all accounts.
- Account Password Options. Set the default password for all new and reset accounts and enable rules to enforce on all passwords.
- Account Lock & Timeout Options. Set actions to perform after a set period of user inactivity, such as locking the iSAMS screen.
Account Disable & Lock Options
Set the limit for the number of logins a user can attempt before being locked out of the iSAMS system in the Account Disable & Lock Options screen. You can also set the duration for how long a user is locked out of iSAMS and choose to send e-mails to the system administrator and/or the user when they are locked out. You can also disable user accounts after a set number of failed login attempts and choose to send e-mails to the system administrator and/or the user when their account is disabled. Use the settings available to prevent unauthorized personnel from attempting to log into iSAMS.
To change the disable and lock settings for user accounts, follow the steps below:
- Select the Security Options applet from Control Panel.
- Select the Account Disable & Lock Options option from the menu to the right of the screen.
The Account Disable & Lock Options screen is displayed: - Change the settings in the Lock-Out Policy section:
- Lock-Out After. Select the number of times a user can attempt to log into iSAMS before their account is locked out.
- Lock-Out Period. Select the time duration that user accounts are locked out for.
- Send E-Mail. Tick the checkboxes to send e-mails to the system administrator and the user when the user is locked out of iSAMS.
- Change the settings in the Disable Policy section:
- Disable Account After. Select the number of times a user can attempt to log into iSAMS before their account is disabled.
- Send Email. Tick the checkboxes to send e-mails to the system administrator and the user when the user account is disabled.
- Click Save Options when finished. To revert to previously saved settings, click Reload Options.
Account Login & Logout Options
Change the options available to users when they log into iSAMS, such as displaying a list of users to choose from. You can also cause the user's web browser to close after a specified number of failed login attempts. Also choose to allow simultaneous logins with the same user account and allow administrator access to other accounts in the Account Login & Logout Options screen. Change these options to secure iSAMS from unauthorized personnel.
To change the login options available to users, follow the steps below:
- Select the Security Options applet from Control Panel.
- Select the Account Login & Logout Options option from the menu to the right of the screen.
The Account Login & Logout Options screen is displayed: - Change the settings in the Login Area section:
- Show User List. Show a list of all users in the login screen.
Number of Failed Logins. Select the number of times a user can attempt to log into iSAMS before their browser window is closed.
Enhanced Security Login. Force users to enter three characters of their Security Answer when logging into iSAMS.
- Use the drop-down lists in the Login Policy section to enable:
- Simultaneous Logins. Allow users to log into iSAMS with their credentials on multiple devices at the same time.
- Administrator Override. Let administrators access iSAMS using their password with any username.
Enabling Administrator Override grants all administrators access to all user accounts using their password. Ensure that you limit the number of accounts with administrative rights in the User Accounts applet before enabling this option.
- Click Save Options when finished. To revert to previously saved settings, click Reload Options.
Account Password Options
Choose a default password assigned to new user accounts and accounts that have been reset in the Account Password Options screen. You can also set the parameters required for a password to be set.
To change the password settings, follow the steps below:
- Select the Security Options applet from Control Panel.
- Select the Account Password Options option from the menu to the right of the screen.
The Account Password Options screen is displayed: - Use the field in the Password Options section to specify a default password. The default password is assigned to reset accounts and new accounts.
- Change the settings in the Password Policy section:
- Maximum Age. Choose the number of days that a password can be used before expiring.
- Minimum Length. Choose the required password length.
- Password History. Choose the number of unique passwords required before a previously-used password can be reused with the account.
- Password Complexity. Choose to force password criteria. Enable this setting to force all passwords to be at least 6 characters long and contain at least 3 of 4 character categories, such as lowercase letters and digits.
- Click Save Options when finished. To revert to previously saved settings, click Reload Options.
Account Lock & Timeout Options
Specify a timeout period, log users out of iSAMS and lock the users screen after a set period of inactivity in the Account Lock & Timeout Options screen. This is useful for forcing only active users to be allowed access to iSAMS.
It is recommended that you set the Screen Lock Timeout field to a short timeframe for security purposes, and a slightly longer timeframe set in the Account Timeout field. This ensures that unsaved data is still accessible before a user session is refreshed and the account is logged out. |
To set lock and timeout options affecting user accounts, follow the steps below:
- Select the Security Options applet from Control Panel.
- Select the Account Lock & Timeout Options option from the menu to the right of the screen. The Account Lock & Timeout Options screen is displayed:
- Change the settings in the Security Policy section:
- Account Timeout. Set the number of minutes before an inactive account is automatically logged out.
- Account Auto Logout. Set to 'Enabled' to cause inactive users' system sessions to end after the time specified in the Account Timeout field. Unsaved data from a user's session is lost.
- Screen Lock Timeout. Set the number of minutes before an inactive user's iSAMS screen is locked. When an inactive user's screen is locked, users can re-enter their login details to continue working in iSAMS where they left off, without losing data.
- Click Save Options when finished. To revert to previously saved settings, click Reload Options.




