Users must log in before they can use d.vinci. They need either their username with a password or the configured Single Sign-on.
Configuration
See Log in users
System behavior
-
Login
If no automatic login via Single Sign-on occurs, d.vinci users will be prompted to log in with their username and password. -
Determine login method
In the user list, the column Login method shows the arrow-with-bracket icon which indicates users for whom the option Username/Password is enabled. -
Set password
When creating a new user, a valid email address must be provided. An automatically generated password will be sent to this email address. During the first login, the user will be prompted to create a new password. -
Forgot password
To allow users to request a new password, the option Request new password must be activated in the basic settings under the Security tab.
If this is the case and the login method Username/Password is enabled for the user, the login page will also display the option Forgot password, where users can request an email to set a new password. How can I change the password or what to do if I forgot my password? -
Incorrect entry
After six incorrect password entries the user will be locked.
How to resolve this can be read here: How to unlock users? -
Lock or limit users
It is possible to revoke users' login access, which corresponds to locking them. This lock can only be lifted by administrators.
Additionally, access to the system can be time-limited, for example, if colleagues are absent for a longer period. See: How to delete or lock users and set a login period? -
Password policy
You can define the exact password policy yourself. A new password must meet at least the following conditions:- It has a minimum length of 8 characters.
If needed, you can set the minimum length yourself in the Basic settings under the Security tab. - It contains at least one number, one letter, and one special character.
- It must not match the currently valid password.
- It has a minimum length of 8 characters.
-
Automatic Logout
After 4 hours of inactivity, users are automatically logged out of the system and must log in again to continue working. -
Change interval
Passwords do not need to be changed regularly, following the recommendations of the BSI. -
Additional security
It is possible to secure your system additionally with two-factor authentication.
How our customers use this
Many of our customers traditionally use the login method with username/password and keep the policy as per our suggestion. However, there are also customers who require passwords up to 16 characters.