In the Security Settings area of the Feature Administration section, Administrator Users can:
- Change the minimum length of student and staff passwords.
- Set the number of password changes staff and students must make before they can reuse a password.
- Configure the number of minutes that will pass before a user's session times out.
- Set the number of days before a new password expires.
- Set password complexity requirements
- Ensure users create a new password upon first login
- Redirect a user that should be using SSO to login
Applicable System Roles
System users with the following roles can do this:
- Administrator Only
Step-by-Step Instructions
- Log into SchoolFront as an Administrator user.
- In the left navigation bar, place your mouse on Feature Administration, then Feature Administration page will appear.
- Click Security Settings. The Security Settings page will open.
- Click the Edit icon.
- Change the settings to those you wish to use in the school.
- Click the Save button to save the changes you made.
- Columns
- Option - The item being changed
- Staff - Affects district personnel
- Family/Student - Affects students and their family. (Unused)
- Options
- Minimum Password Length - The minimum number of characters that you would like your user's passwords to be.
- Remembered Password Count - The minimum number of passwords that the system will remember, and provide an error for already having used this password before.
- Session Timeout (minutes) - The amount of minutes before a user is automatically signed out of the system and the session is ended.
- Password Expiration (days) - How many days until a user is required to reset their password.
- Password Minimum Number of Alpha Characters - The minimum number of letters required from the alphabet.
- Password Minimum Number of Numeric Characters - The minimum number of characters required from numbers.
- Password Minimum Number of Non-Alpha Numeric Characters - The minimum number of characters that are not letters or numbers required.
- Password Force Change on First Login - Require users to change their password upon logging into the system for the first time. Note: Initially provided passwords are system generated and not secure.
- Password Encryption - Password will show as "-PASSWORD ENCRYPTED-" on the user's employee profile if this is turned on.
- Enable SSO Redirect - If your district uses SSO, and a user with a district email address attempts to sign in outside of the SSO portal, they will be redirected to login using the portal.
- SSO Redirect Message - Set a custom message for anyone who gets redirected.