Require users to change their password every | Financial Edge Ideas

Require users to change their password every thirty days.

Since FE is an accounting software and for security reasons users should be required to change their passwords every thirty days.

Guest
Jun 13 2019
Needs review

Security and Admin

Comments (2)
Votes (1)

Attach files

Enter a subject

Guest commented

October 04, 2019 01:47

I agree with this!

Our CFO sends out calendar items to the entire department reminding us to change our passwords every 90 days. This came as a recommendation from our auditors.

Thank you for posting this!

Attachments Open full size
Nate Adams commented

September 17, 2019 19:36

30 day password change rules have been debunked as an effective way to secure passwords. https://www.ftc.gov/news-events/blogs/techftc/2016/03/time-rethink-mandatory-password-changes

If an organization has effective system security, such frequent and onerous password update systems would not be needed. I would vote against this recommendation.

Attachments Open full size