Advanced Security Settings

Advanced Security Settings is available to any Kapost member with an Enterprise level license. Once the feature is available in your Kapost instance, you must enable it. Advanced Security Settings activates the following security measures: expiring passwords, requiring strong passwords, locking users, and terminating sessions.

1. To enable Advanced Security, click the Members icon in the top navigation.

2. Click the Settings option in the top-right corner.

3. Select the Use Advanced Security Options for Members checkbox.
   Once you select the checkbox, the following security measures are enabled.

Expiring Passwords

This feature will expire a user's password every 90 days. This will only impact users in instances where this option turned on. When the 90 days is complete, once the user has logged in successfully, Kapost will display a popup asking them to choose a new password and the service will forbid them from continuing until a new password is chosen.

Requiring Strong Passwords

When this option is turned on, the users in this instance will be required to use strong passwords on their account. Specifically, the passwords must:

• Minimum of 8 characters

• Must contain characters from each of these groups: Alphanumeric, special characters, and password must not be the same as User Id.
• Password cannot contain repeating characters or numbers

Locking Users

This feature will limit failed login attempts to seven successive attempts. Once seven unsuccessful login attempts have been made, Kapost will lock that user's account. Access to the account will be reactivated automatically after 3 minutes from the last failed login attempt.

Terminating Sessions

After 60 minutes of inactivity, Kapost will terminate the session, asking you to log in again. If advanced security is not turned on, you will be logged out after 2 weeks of inactivity.