Skip to main content
  1. Foundant Technologies
  2. Grant & Scholarship Lifecycle Manager
  3. GLM & SLM - Site Settings and Administration
  4. Security and Access

Set User Password Policy

  • Last Updated

Password Policy controls user password requirements for all users in your Grant Lifecycle Manager (GLM) or Scholarship Lifecycle Manager (SLM) site. Requirements configured in this setting apply to all roles when users set or reset their password. 

User Role: Administrator

Use Password Policy to:

  • Require specific character types in user passwords.
  • Set a password expiration period for your site.
  • Require two-factor authentication for specific user roles.
  • Configure the maximum number of failed login attempts before a user is locked out.
If the Password Policy setting is not enabled, a default password policy is in effect for GLM/SLM sites. The default policy is a minimum of 6 characters that can include letters, numbers, and the following special characters: !@#$%^&*()_  
If a custom password policy is enabled, contact Support in order to customize the password instructions for your registration page for new users.

 

Enable the User Password Policy Setting

To enable and configure the User Password Policy setting in GLM/SLM:

  1. Click the gear icon in the upper-right corner.gear icon 
     

  2. Click the pencil icon next to the User Password Policy setting.pencil icon

     

  3. Make the necessary edits and selections, and then click Save.
    • Password Policy Enabled - If checked, the configurations in this setting go into effect. 
    • Include These Character Types - Character types that a user can include in their password.
    • Expire Days - The number of days after which users are prompted to reset their password.
      • The default for this is to never expire, which is the industry recommendation. 
      • A password expiration should only be used if required by the organization's password security policy.
    • Two-Factor Auth Roles - Check the box next to a role to require two factor authentication for users with that role.

    • Max Failed Attempts (Always Enforced) - The maximum failed attempts allowed for users to enter their password when logging on. 

      • After reaching this limit, the user will be locked out of their account and prompted to reset their password.
      • The number entered into this field goes into effect even if Password Policy Enabled is not checked.save button
       
If a user tries to set a password that does not meet the requirements, the system will display a message listing the password requirements.

 

Additional Resources 

The following resources provide additional information on this topic.  

Was this article helpful?
0 out of 0 found this helpful
Return to top