Skip to Main Content
Sage 200 UKI Ideas Portal
Status Already Exists
Created by Callum Middleton
Created on Apr 8, 2024

Password/MFA Policy - account lockout threshold

Allow Administrators to ensure user passwords meet NIST guidelines and also enforce MFA.
Could the password policy be configurable or enforced as below by administrators?


  • Account lockout threshold to a sufficiently high value of 10 attempts to ensure users can accidentally mistype their password several times before their account is locked, but which still ensures that a brute force password attack will lock the accoun

Product Variant Sage 200 Standard, Sage for Education
  • Admin
    Jo Kirkup
    Reply
    |
    Apr 9, 2024

    Sage Account (Sage ID) is a central identification service we use across our product and service range.

    For Sage 200 Standard & Sage for Education its the login mechanism for the product. For Sage 200 Professional its used to connect services to the product.

    Due to the nature of Sage ID any changes have to be considered across the entire product range.

    We already have this within the solution as well as a number of other triggers and risk identifiers and activities.